[TriLUG] SSO in a Mixed World, part 2
Craig Cook
cncook001 at yahoo.com
Sat Nov 8 11:30:44 EST 2014
>Does anybody have a good cheat sheet on setting up Kerberos
>authentication between Apache and AD? I thought that I had seen one a
>week or two ago, but I can't find it again.
Try something like this:
<Location /myspecial>
AuthType basic
AuthzLDAPAuthoritative on
AuthName "special repository" AuthBasicProvider ldap
AuthLDAPUrl "ldap://ad.example.com:3268/dc=example,dc=com?sAMAccountName?sub?(objectClass=user)" NONE AuthLDAPBindDN "cn=ad_bind_acct,ou=Service Accounts,dc=example,dc=com" AuthLDAPBindPassword big_secret
require ldap-group CN=My Auth Friends,OU=Security Groups,OU=Groups,OU=company,DC=example,DC=com
</Location>
Craig
More information about the TriLUG
mailing list