*nix Thread, Apache2 + AuthenNTLM +groups help needed in Technical; I have GLPI working on one of my Ubuntu servers with full NTLM. I want to make it so it ...
11th November 2008, 04:34 PM #1
Apache2 + AuthenNTLM +groups help needed
I have GLPI working on one of my Ubuntu servers with full NTLM. I want to make it so it only accepts one user group though.
My current apache config is
Currently this authenticates everyone.
PerlAddVar ntdomain "DOMAIN DC1 DC2"
PerlSetVar defaultdomain DOMAIN
PerlSetVar splitdomainprefix 1
PerlSetVar ntlmdebug 2
PerlSetVar ntlmauthoritative off
PerlsetVar basicauth off
I am not sure if what I want is possible with this method as I have tried alsorts of directive lines for groups.
IDG Tech News
12th November 2008, 10:29 AM #2
Ok if nobody knows the answer to this then how about me using a .htaccess to filter by group ? Is this possible? I can do the winbinf bit etc, it would just be the htaccess I would need some guidance on.
12th November 2008, 10:35 AM #3
require group admin
12th November 2008, 10:45 AM #4
Is that a solution to my original query or the .htaccess? I have tried that with my original solution and it doesnt seem to work. I couldnt find any examples of it being used with groups either.
Originally Posted by Geoff
I am willing to try another apache module as well if you can recommend one which will give me ntlm and allow me to use a require group directive.
Rofl top google hit is this thread!
12th November 2008, 10:51 AM #5
That was assuming you were going down the winbind route. Anyway, If you want straight NTLM...
AuthName "NTLM Authentication"
NTLMAuthHelper "/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp" --require-membership-of="YOUR_DOMAIN+administrators"
12th November 2008, 11:00 AM #6
Thanks I will give that a go. Any quirks I should know about? Hmm what about the squid reference?
12th November 2008, 11:02 AM #7
It's just the way ntlm auth talks to the client app.
12th November 2008, 11:08 AM #8
What module needs to be enabled for this to work then as its moaning NTLMAuth is an invalid command.
12th November 2008, 11:23 AM #9
12th November 2008, 01:41 PM #10
Ok this has turned out to be more of a pain than I realised. I assume you are compiling you own as there are no packages? I cannot get it to compile on mine no matter what I try. I found a compiled one on the ubuntu forums but it says its for a different verion of apache grrr. Everything else is ready I just need to get a working mod_ntlm.so.
12th November 2008, 01:50 PM #11
correct. I compiled my own.
12th November 2008, 02:02 PM #12
Then you must have been using voodoo because eveytime I fix one error on the compiling it finds another. any chance you can attach yours?
12th November 2008, 02:18 PM #13
12th November 2008, 02:42 PM #14
wrong elfclass64.... Is your server 64 bit?
12th November 2008, 02:44 PM #15
By localzuk in forum *nix
Last Post: 7th June 2008, 11:12 PM
Last Post: 5th December 2007, 02:15 PM
By jasonyates in forum How do you do....it?
Last Post: 6th November 2007, 11:03 AM
By localzuk in forum *nix
Last Post: 11th February 2007, 09:57 PM
By projector1 in forum Hardware
Last Post: 24th February 2006, 10:20 AM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)