Hi All, Still trying to figure this one out. Had no response at all from the apache forum. Just to recap, We have a windows domain and an opensuse 42.1 apache 2.4 web /Lamp server I have set up Yast > Windows Domain Membership and I can log in as a domain user successfully. in the command line. Now we have several websites that need to use active directory authentication. (osticket and some of our own creations). This is where I am stuck. I cannot figure out how to get apache to use this authentication method. We have osticket working with its own ldap plug in but we want it to use the windows authentication and log users in automatically and also our own php sites need to authenticate as the logged in user. (Basically like pass through authentication in IIS, but I do not want to have to use IIS but this is the only thing causing a problem with apache.) Has anyone achieved this or does anyone know how to? Thanks On 18 April 2016 at 11:50, Paul Groves <paul.groves.787@gmail.com> wrote:
I have tried this
http://blog.stefan-macke.com/2011/04/19/single-sign-on-with-kerberos-using-d...
still no luck. It is as if I haven't even done anything, the configuration is ignored.
On 18 April 2016 at 10:41, Paul Groves <paul.groves.787@gmail.com> wrote:
Still stuck. I have installed osticket with the http passthru and ldap plugins. according to users on their forums. this works on a server running iis with sso authentication turned on.
So it looks like it is just apache needs configuring. but how, I have tried LDAP PAM and NTLM which I cannot seem to get working even though my configuration file for the virtualhost does not error.
It is as if I haven't put any config in at all. It is just ignored.
Any clues? still cant find any proper documentation.
On 10 March 2016 at 12:29, Moby <moby@mobsternet.com> wrote:
On 03/10/2016 03:59 AM, Paul Groves wrote:
Hi, I am trying to get apache working with Single Sign On on our windows domain.
We are using Leap 42.1 Server Minimal Text Mode with apache / php5
This server is for OS Ticket which I already have working with LDAP but need to get single sign on working so users authenticate automatically..
I have set up Yast > Windows Domain Membership and I can log in as a domain user successfully.
I cannot quite get my head around how this works. Where do I go from here to configure apache to work with active directory?
Thanks
I have a setup similar to what you are trying to achieve. You are on the right path. Now look at apache's mod_authz and the pwauth pacakge - the 2 together with PAM will allow you to use AD authentication from pache. This is one way of doing this, and the way I am using it. Another method is to use LDAP against AD.
-- --Moby
They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety. -- Benjamin Franklin
-- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
-- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org