Re: authentication against active directory.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 





Have you had a look at ntlm auth

That is what I use.. and it works well.

I had to compile it myself though


          <Files  oncampuslogin.php>
             AuthName  "NTLM Authentication"
             NTLMAuth on
             NTLMAuthHelper  "/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp"
             NTLMBasicAuthoritative on
             AuthType NTLM
             require valid-user
          </Files>



Simon Walter wrote:
Ramesh wrote:
Hi,

I have a web site which I would want to allow only users after authenticating them against our Active Directory. I wanted to place .htaccess file in the main web folder

1. Do I need to install "mod_authz_ldap" module ? And is there any other module which I would need to install ?

2. Also what should I mention in .htaccess file to ask it to authenticate users against my Active Directory ?

Thank you.



Hi Ramesh,

You need to configure Apache to authenticate against your AD and this has nothing to do with an .htaccess file. Yes, you need mod_authnz_ldap and also mod_ldap. There are quite a few HOWTO type documents for doing this on the web and describe this process fairly well. What I'd like to do is authenticate over an encrypted TCP/IP session like SSL. I haven't managed to get that working yet. Here the relative section of my Apache vhost conf for non-SSL auth with AD:

...
        <Location /projects>
...
                Order deny,allow
                Deny from all
                Allow from all
                AuthType Basic
                AuthName "***"
                AuthBasicProvider "ldap"
                AuthLDAPURL "ldap://***:3268/DC=***,DC=***?sAMAccountName?sub?(objectClass=user)"
                AuthLDAPBindDN "***@***.***"
                AuthLDAPBindPassword "***"
                AuthzLDAPAuthoritative Off
                require valid-user
        </Location>
...

--

Peter de Groot
Eastern Goldfields College
Kalgoorlie 6430
Department of Education and Training
Phone 90801800 Fax 90801866 Mob 0418915312


[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux