Have you had a look at ntlm auth
That is what I use.. and it works well.
I had to compile it myself though
<Files oncampuslogin.php>
AuthName "NTLM Authentication"
NTLMAuth on
NTLMAuthHelper "/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp"
NTLMBasicAuthoritative on
AuthType NTLM
require valid-user
</Files>
Simon Walter wrote:
Ramesh wrote:Hi Ramesh,
Hi,
I have a web site which I would want to allow only users after authenticating them against our Active Directory. I wanted to place .htaccess file in the main web folder
1. Do I need to install "mod_authz_ldap" module ? And is there any other module which I would need to install ?
2. Also what should I mention in .htaccess file to ask it to authenticate users against my Active Directory ?
Thank you.
You need to configure Apache to authenticate against your AD and this has nothing to do with an .htaccess file. Yes, you need mod_authnz_ldap and also mod_ldap. There are quite a few HOWTO type documents for doing this on the web and describe this process fairly well. What I'd like to do is authenticate over an encrypted TCP/IP session like SSL. I haven't managed to get that working yet. Here the relative section of my Apache vhost conf for non-SSL auth with AD:
...
<Location /projects>
...
Order deny,allow
Deny from all
Allow from all
AuthType Basic
AuthName "***"
AuthBasicProvider "ldap"
AuthLDAPURL "ldap://***:3268/DC=***,DC=***?sAMAccountName?sub?(objectClass=user)"
AuthLDAPBindDN "***@***.***"
AuthLDAPBindPassword "***"
AuthzLDAPAuthoritative Off
require valid-user
</Location>
...
--
 |
Peter de Groot Eastern Goldfields College Kalgoorlie 6430 Department of Education and Training Phone 90801800 Fax 90801866 Mob 0418915312 |
 |
