Re: Pass-through LDAP authentication with Internet Explorer and Active Directory

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Tue, Sep 16, 2008 at 11:44 AM, Eric Covener <covener@xxxxxxxxx> wrote:
On Tue, Sep 16, 2008 at 11:40 AM, Clayton Hicklin <chicklin@xxxxxxxxx> wrote:
> As far as I can tell, the <domain>\ prefix is not stored anywhere inside the
> user object, so there is no way to authenticate with the credentials that IE
> provides.
>
> Has anybody got this working?  Is there some sort of workaround or hidden
> parameter in the Apache LDAP modules that might fix this?  Thanks!


Is there any other header set by IE when it does this automatic
authentication? Is the password really sent along with it?


--
Eric Covener
covener@xxxxxxxxx

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx


I think these credentials are only sent to "trusted" sites as defined by IE's security settings.  This is on an intranet, so it would be considered a "trusted" site by default.

--
Clayton Hicklin
chicklin@xxxxxxxxx
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux