[CentOS] Practical experience with NTLM/Windows Integrated Authentication [Apache]
Kanwar Ranbir Sandhu
m3freak at thesandhufamily.ca
Tue Feb 17 19:18:45 UTC 2009
On Tue, 2009-02-17 at 14:07 -0500, Kanwar Ranbir Sandhu wrote:
> On Mon, 2009-02-16 at 20:36 -0500, Ross Walker wrote:
> > In Firefox go to your about:config page and scroll down to:
> >
> > network.negotiate-auth.delegation-uris
> >
> > and
> >
> > network.negotiate-auth.trusted-uris
> >
> > and for their string values enter your DNS domain to allow kerberos
> > negotiation and delegation to occur.
>
> HA! I had these set already, but I still get prompted. So, today I
> decided I should delete the saved passwords for the apache hosted site I
> was trying to access, and viola, SSO worked! I can't believe I didn't
> remove the saved passwords before.
I should have mentioned that I only set
"network.negotiate-auth.trusted-uris". I left the other one blank.
Setting it or not didn't seem to make a difference. But, based on this:
https://developer.mozilla.org/en/Integrated_Authentication
The apache server should have been able to handle the authentication.
Maybe I'm misunderstanding what "delegation" does.
Regards,
Ranbir
--
Kanwar Ranbir Sandhu
Linux 2.6.27.12-170.2.5.fc10.x86_64 x86_64 GNU/Linux
14:12:01 up 6 days, 15:59, 4 users, load average: 1.11, 1.13, 0.87
More information about the CentOS
mailing list