On Mon, 2009-02-16 at 15:21 -0500, Ross Walker wrote: > Avoid NTLM all together and use Kerberos between apache/squid, Active > Directory and the Windows and Linux clients. > > Firefox and IE both support Kerberos authentication. I believe apache/ > squid do too, but you need a manually create the service principal > names in AD for those. I was using NTLM at first, but then switched to Kerberos (on the CentOS server side). The Windows users didn't see a difference. For them, SSO works just as well as before, but I still get prompted to enter user/password when I use my Fedora 10 desktop to browse to CentOS hosted web sites. My Fedora desktop is joined to the domain. I can login with my AD user/password. I even have caching working, which lets me sign on to my laptop when it's not connected to the network. I suppose I've missed something, though I don't know what. Regards, Ranbir -- Kanwar Ranbir Sandhu Linux 2.6.27.12-170.2.5.fc10.x86_64 x86_64 GNU/Linux 17:57:09 up 5 days, 19:44, 3 users, load average: 0.21, 1.13, 1.00 _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: centos@xxxxxxxxxx
- Subject: Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- From: Kanwar Ranbir Sandhu <m3freak@xxxxxxxxxxxxxxxxxx>
- Date: Mon, 16 Feb 2009 18:03:58 -0500
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <D7CFA833-5FFE-46B2-9AB8-240D863A3BEC@xxxxxxxxx>
- References: <6317d8990902130311v3a130799yb700b615d7effca6@xxxxxxxxxxxxxx> <4998AD05.4090207@xxxxxxxxxxxxxxx> <e814db780902151858s39b100bx72928379a31a7d60@xxxxxxxxxxxxxx> <005001c9900a$dfa2f040$9ee8d0c0$@srbu@orgfarm.uu.se> <49991B41.6000607@xxxxxxxxxxxxxxx> <006601c9900e$6cefb340$46cf19c0$@srbu@orgfarm.uu.se> <D7CFA833-5FFE-46B2-9AB8-240D863A3BEC@xxxxxxxxx>
- Follow-Ups:
- Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- From: Ross Walker
- Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- From: Christopher Chan
- Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- References:
- Practical experience with NTLM/Windows Integrated Authentication [Apache]
- From: Sven
- Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- From: Christopher Chan
- Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- From: Filipe Brandenburger
- Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- From: Sorin Srbu
- Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- From: Christopher Chan
- Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- From: Sorin Srbu
- Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- From: Ross Walker
- Practical experience with NTLM/Windows Integrated Authentication [Apache]
- Prev by Date: Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- Next by Date: Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- Previous by thread: Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- Next by thread: Re: Practical experience with NTLM/Windows Integrated Authentication [Apache]
- Index(es):
 |