How do people do Apache Active-Dir authentication?
Gautier, B (Bob)
Bob.Gautier at rabobank.com
Thu Jul 6 10:11:06 GMT 2006
> -----Original Message-----
> From:
> samba-technical-bounces+bob.gautier=rabobank.com at lists.samba.o
rg [mailto:samba-technical->
bounces+bob.gautier=rabobank.com at lists.samba.org] On Behalf
> Of Jason Haar
> Sent: 06 July 2006 10:46
> To: samba-technical at lists.samba.org
> Subject: How do people do Apache Active-Dir authentication?
>
> I've got a perfectly well working Samba server (with winbind) with
> Apache-2 on it (CentOS 4.3 and Fedora Core 5), and want to be
> able to backend Apache onto Active Directory for
> authentication and authorization.
>
> Someone must have got this working? Right? :-}
>
Try mod_auth_kerb - authenticate your users using AD as your Kerberos
KDC. You can even get pass-through authentication going, meaning that
once your users have logged onto their Windows boxes their credenticals
will authenticate them with Apache too. Fiddly but very nice when it
works.
I can send you config examples and demo scripts if you need them.
Bob G
_____________________________________________________________
This email (including any attachments to it) is confidential, legally privileged, subject to copyright and is sent for the personal attention of the intended recipient only. If you have received this email in error, please advise us immediately and delete it. You are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. Although we have taken reasonable precautions to ensure no viruses are present in this email, we cannot accept responsibility for any loss or damage arising from the viruses in this email or attachments. We exclude any liability for the content of this email, or for the consequences of any actions taken on the basis of the information provided in this email or its attachments, unless that information is subsequently confirmed in writing. If this email contains an offer, that should be considered as an invitation to treat.
_____________________________________________________________
More information about the samba-technical
mailing list