[CentOS] authentication loosely tied to active directory?

Tue Jun 16 16:08:00 UTC 2009
JohnS <jses27 at gmail.com>

On Mon, 2009-06-15 at 22:30 -0500, Paul Johnson wrote:
> On Fri, Jun 5, 2009 at 5:29 PM, Ross Walker<rswwalker at gmail.com> wrote:
> > On Jun 5, 2009, at 1:00 PM, Les Mikesell <lesmikesell at gmail.com> wrote:
> >
> >> What's the best authentication scheme when you are dealing with an
> >> active directory that someone else controls?  I've been using pam
> >> configured for smb and local passwords where a local account is needed
> >> for real logins (but either the domain or local password will work)
> >> and
> >> web services don't require a local account. That's most of the
> >> functionality I want and it doesn't take pre-arrangement with the AD
> >> administrator, but I have to glue mod_auth_pam into httpd and I'm not
> >> sure how to duplicate it for java web services.

If this is java web services your having the problem with you can also
use kerberos with SOAP/XML/RPC. But the catch is only 128Bit Encryption.

Another option maybe LDAP under Apache.

john