I am trying to follow a solution that states "edit apache's libtool and change the following option to "yes": build_libtool_libs=no" which begs the question, how? :) Anyone care to show me the light?
Thanks! jlc
On Tue, Jan 20, 2009 at 5:35 PM, Joseph L. Casale JCasale@activenetwerx.com wrote:
I am trying to follow a solution that states "edit apache's libtool and change the following option to "yes": build_libtool_libs=no" which begs the question, how? :) Anyone care to show me the light?
If you'd tell us what it is that you're doing we can help out, or explain any one of a hundred ways that you're doing it wrong. Either one, really.
If you'd tell us what it is that you're doing we can help out, or explain any one of a hundred ways that you're doing it wrong. Either one, really.
I was tearing my hair out trying to get mod_auth_ntlm_winbind working with apache so I could later use adLDAP/Dokuwiki to migrate all our docs out of Exchange Public Folders.
The goal was SSO in our AD domain. I had plain LDAP binding against the user asking for permission to Dokuwiki which worked easy and was secure enough but the goal was SSO...
I had a total brain fade on the mod_auth_ntlm_winbind compilation but got it working, now I simply can't make apache authenticate a user? Firefox has the network.negotiate-auth.trusted-uris value defined yet simply keeps prompting for authentication while this module causes apache to deliver something to ie that it simply can't even render the page. Samba, Kerberos and winbind are all configured right as the CentOS box has been joined to the domain, and wbinfo and getent return logical data. It's clearly this module and apache that are not working, but this is the only module that provides group support versus username only mapping that I know of.
As much as I am getting to like Dokuwiki, if you can reco an easy to use wiki that facilitates SSO from AD clients but runs on Linux I would be grateful. I only have one IIS server and I can't/wont hack at that box, its far to critical.
I officially have no more hair.
jlc
On Tue, 2009-01-20 at 21:00 -0700, Joseph L. Casale wrote:
If you'd tell us what it is that you're doing we can help out, or explain any one of a hundred ways that you're doing it wrong. Either one, really.
I was tearing my hair out trying to get mod_auth_ntlm_winbind working with apache so I could later use adLDAP/Dokuwiki to migrate all our docs out of Exchange Public Folders.
The goal was SSO in our AD domain. I had plain LDAP binding against the user asking for permission to Dokuwiki which worked easy and was secure enough but the goal was SSO...
I had a total brain fade on the mod_auth_ntlm_winbind compilation but got it working, now I simply can't make apache authenticate a user? Firefox has the network.negotiate-auth.trusted-uris value defined yet simply keeps prompting for authentication while this module causes apache to deliver something to ie that it simply can't even render the page. Samba, Kerberos and winbind are all configured right as the CentOS box has been joined to the domain, and wbinfo and getent return logical data. It's clearly this module and apache that are not working, but this is the only module that provides group support versus username only mapping that I know of.
As much as I am getting to like Dokuwiki, if you can reco an easy to use wiki that facilitates SSO from AD clients but runs on Linux I would be grateful. I only have one IIS server and I can't/wont hack at that box, its far to critical.
I officially have no more hair.
---- mod_authz_ldap definitely can use groups or users to authenticate though to be honest, I am only authenticating to OpenLDAP and I do see some references to authenticating to active directory in the documentation.
also - my impression was that only IE could use the SSO and Firefox would probably have to login.
Craig
mod_authz_ldap definitely can use groups or users to authenticate though to be honest, I am only authenticating to OpenLDAP and I do see some references to authenticating to active directory in the documentation.
Yeah, I have LDAP working w/ groups using Dokuwiki's built in LDAP auth backend. It was rather trivial to setup...
also - my impression was that only IE could use the SSO and Firefox would probably have to login.
Well, all my firefox clients do it with Squid, it can be done.
Thanks! jlc
On Tue, 2009-01-20 at 21:45 -0700, Joseph L. Casale wrote:
mod_authz_ldap definitely can use groups or users to authenticate though to be honest, I am only authenticating to OpenLDAP and I do see some references to authenticating to active directory in the documentation.
Yeah, I have LDAP working w/ groups using Dokuwiki's built in LDAP auth backend. It was rather trivial to setup...
also - my impression was that only IE could use the SSO and Firefox would probably have to login.
Well, all my firefox clients do it with Squid, it can be done.
---- OK - well, I am pretty much sold on Alfresco but I can't guarantee that it will do the SSO with FF - it definitely will do AD and I think kicks Viewpoint butt.
Craig
OK - well, I am pretty much sold on Alfresco but I can't guarantee that it will do the SSO with FF - it definitely will do AD and I think kicks Viewpoint butt.
Nice interface, do I understand this right: the only community version is a dev snapshot, and it needs java (shudder)?
I just started looking at Mindtouch which distributes a stable community version in rpm format and doesn't use java. I continue trying to get the auth in Dokuwiki for one more day, then I will have to trow the towel in:)
Thanks for the reco! jlc
On Wed, 2009-01-21 at 05:35 -0700, Joseph L. Casale wrote:
OK - well, I am pretty much sold on Alfresco but I can't guarantee that it will do the SSO with FF - it definitely will do AD and I think kicks Viewpoint butt.
Nice interface, do I understand this right: the only community version is a dev snapshot, and it needs java (shudder)?
I just started looking at Mindtouch which distributes a stable community version in rpm format and doesn't use java. I continue trying to get the auth in Dokuwiki for one more day, then I will have to trow the towel in:)
Thanks for the reco!
---- Re: Alfresco...tomcat - so yes, java. Hardly a show stopper in my book.
Development has been extremely robust...company is making money, new versions and features are regularly released/updated and the community version works exceptionally well.
also, automation is/can be javascript (weird I know), but it's quite robust.
It's not a simple system but it's got a ton of features.
Craig
-
Craig White -
Jim Perrin -
Joseph L. Casale