+ Post New Thread
Results 1 to 10 of 10
Virtual Learning Platforms Thread, Moodle SSO in Technical; So I've been trying to setup Moodle with SSO and followed all the instructions I can find but its not ...
  1. #1
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    299
    Thank Post
    63
    Thanked 27 Times in 26 Posts
    Rep Power
    13

    Moodle SSO

    So I've been trying to setup Moodle with SSO and followed all the instructions I can find but its not happening for me so need to ask for some help.... please.

    What I'm running:

    AD Users - Windows Server 2012
    Moodle Server - Ubuntu Server 12.04.3
    Moodle Version - Moodle 2.5.4
    Testing with Browser - IE 11 & Chrome

    Instructions from - NTLM authentication - MoodleDocs (Using the NTLM part of Samba for Apache on Linux)

    NTLM Authentication is working
    Moodle Server is joined to the domain and running 'wbinfo -u' or 'wbinfo -g' returns results as expected

    Has anyone who has this working got any advice or tips?

    Thanks

    Ben
    Last edited by jaminben; 4th February 2014 at 11:53 AM.

  2. #2
    clodhopper's Avatar
    Join Date
    May 2007
    Location
    Portsmouth
    Posts
    93
    Thank Post
    0
    Thanked 11 Times in 11 Posts
    Rep Power
    18
    I had this working in a test environment a year or so ago so please excuse me if I'm a bit "fuzzy" on it :-)

    Which browser are you using IE / Chrome / Firefox ??

    As I remember you had to add your moodle site to I think it was "trusted zones" for it to work

  3. #3
    penfold_99's Avatar
    Join Date
    Feb 2008
    Location
    East Sussex
    Posts
    944
    Thank Post
    57
    Thanked 163 Times in 115 Posts
    Rep Power
    67
    Hi @jaminben

    Could you expand on "its not happening for me"? What is not happening.

    To invoke a NTLM login you need to go to my.moodledomain.com/login/
    If you are using IE your moodle site needs to be in either trusted sites or local intranet so IE will forward on the login credentials.
    If you are using chrome or firefox you will need to turn NTLM on. (quick google will resolve that)

  4. Thanks to penfold_99 from:

    chrisjako (18th June 2014)

  5. #4
    danbuntu's Avatar
    Join Date
    Dec 2009
    Location
    Maidstone, Kent
    Posts
    304
    Thank Post
    0
    Thanked 54 Times in 51 Posts
    Rep Power
    19
    have to added the moodle url to the 'intranet zone' in IE?

  6. #5
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    299
    Thank Post
    63
    Thanked 27 Times in 26 Posts
    Rep Power
    13
    Quote Originally Posted by clodhopper View Post
    I had this working in a test environment a year or so ago so please excuse me if I'm a bit "fuzzy" on it :-)

    Which browser are you using IE / Chrome / Firefox ??

    As I remember you had to add your moodle site to I think it was "trusted zones" for it to work
    Thanks, Using IE & Chrome... its also added to the trusted zone.

    Quote Originally Posted by danbuntu View Post
    have to added the moodle url to the 'intranet zone' in IE?
    Thanks, Done that.

    Quote Originally Posted by penfold_99 View Post
    Hi @jaminben
    To invoke a NTLM login you need to go to my.moodledomain.com/login/
    Thanks, I'm going to http://192.168.110.6/moodle/login/

    Quote Originally Posted by penfold_99 View Post
    Hi @jaminben
    If you are using IE your moodle site needs to be in either trusted sites or local intranet so IE will forward on the login credentials.
    Thanks, Done that.

    Quote Originally Posted by penfold_99 View Post
    Hi @jaminben
    If you are using chrome or firefox you will need to turn NTLM on. (quick google will resolve that)
    Thanks, NTLM is on and working... manual login.

    Quote Originally Posted by penfold_99 View Post
    Hi @jaminben
    Could you expand on "its not happening for me"? What is not happening.
    Its not working... been trying to get it working for awhile now and I'm at the end of the road. I don't see how I can check to see what part isn't working (logging).


    EDIT
    Just double checking: My trusted sites address is http://192.168.110.6 I guess this is correct?
    Last edited by jaminben; 4th February 2014 at 11:52 AM.

  7. #6
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    299
    Thank Post
    63
    Thanked 27 Times in 26 Posts
    Rep Power
    13
    Still can't get this to work... can anyone spot any issues with my settings below?

    Moodle NTLM SSO:

    Enable: yes
    Subnet: 255.255.255.0/24
    MS IE fast Path: No
    Authentication Type: NTLM
    Remote username format: %domain%\%username%

    When running wbinfo -u I return usernames in the following format:

    RHSC\username1
    RHSC\username2

    My apache2.conf file is located @ /etc/apache2/ and I've added the following lines at the bottom of the file:

    Code:
    <IfModule !mod_auth_ntlm_winbind.c>
          LoadModule auth_ntlm_winbind_module /usr/lib/apache2/modules/mod_auth_ntlm_winbind.so
    </IfModule>
    Code:
    <Directory "/var/www/moodle/auth/ldap/">
         <Files ntlmsso_magic.php>
             NTLMAuth on
             AuthType NTLM
             AuthName "Moodle NTLM Authentication"
             NTLMAuthHelper "/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp"
             NTLMBasicAuthoritative on
             require valid-user
         </Files>
    </Directory>
    The mod_auth_ntlm_winbind.so is located @ /usr/lib/apache2/modules/
    The ntlmsso_magic.php is located @ /var/www/moodle/auth/ldap/

    I can't find anywhere which will allow debugging apart from the apache2.log.

    Anyone got any thoughts or anything else I can check?

    Thanks

    Ben
    Last edited by jaminben; 6th February 2014 at 05:16 PM.

  8. #7
    jamesfed's Avatar
    Join Date
    Sep 2009
    Location
    Reading
    Posts
    2,207
    Thank Post
    137
    Thanked 345 Times in 291 Posts
    Rep Power
    87
    Could it be that under User attribute in moodle you have cn listed instead of samaccountname?

    Ran into this myself a while back and blogged about it here - Moodle and LDAP authentication – login doesn

  9. #8
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    299
    Thank Post
    63
    Thanked 27 Times in 26 Posts
    Rep Power
    13
    Quote Originally Posted by jamesfed View Post
    Could it be that under User attribute in moodle you have cn listed instead of samaccountname?
    Thanks for the reply,

    I have User Lookup Settings > User Attribute > samAccountName

  10. #9
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    299
    Thank Post
    63
    Thanked 27 Times in 26 Posts
    Rep Power
    13
    Fixed it.... I had the wrong subnet set for NTLM SSO, it should have been 192.168.100.0/28

    Happy feeling for a Friday afternoon

  11. #10

    Join Date
    Sep 2007
    Posts
    160
    Thank Post
    15
    Thanked 3 Times in 3 Posts
    Rep Power
    15
    Quote Originally Posted by penfold_99 View Post
    Hi @jaminben

    Could you expand on "its not happening for me"? What is not happening.

    To invoke a NTLM login you need to go to my.moodledomain.com/login/
    If you are using IE your moodle site needs to be in either trusted sites or local intranet so IE will forward on the login credentials.
    If you are using chrome or firefox you will need to turn NTLM on. (quick google will resolve that)
    thanks, logging into moodledomain.com/login/ was the final piece to my puzzle, feel like jumping for joy as it took me 2 days to figure out I had a duplicate entry in global workgroup for my smb.conf file!

SHARE:
+ Post New Thread

Similar Threads

  1. Moodle SSO with ADFS
    By kellow87 in forum Virtual Learning Platforms
    Replies: 1
    Last Post: 16th January 2014, 06:44 PM
  2. Moodle SSO
    By Hightower in forum Virtual Learning Platforms
    Replies: 14
    Last Post: 25th May 2011, 08:24 AM
  3. Moodle SSO - tearing my hair out!
    By jgcracknell in forum Virtual Learning Platforms
    Replies: 6
    Last Post: 18th April 2011, 01:05 PM
  4. moodle sso help
    By cobra in forum Virtual Learning Platforms
    Replies: 14
    Last Post: 4th March 2011, 01:27 PM
  5. Quick question for those running Moodle SSO
    By MACIT in forum Virtual Learning Platforms
    Replies: 3
    Last Post: 22nd June 2010, 09:46 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •