On Mon, 2009-06-15 at 22:30 -0500, Paul Johnson wrote: > On Fri, Jun 5, 2009 at 5:29 PM, Ross Walker<rswwalker at gmail.com> wrote: > > On Jun 5, 2009, at 1:00 PM, Les Mikesell <lesmikesell at gmail.com> wrote: > > > >> What's the best authentication scheme when you are dealing with an > >> active directory that someone else controls? I've been using pam > >> configured for smb and local passwords where a local account is needed > >> for real logins (but either the domain or local password will work) > >> and > >> web services don't require a local account. That's most of the > >> functionality I want and it doesn't take pre-arrangement with the AD > >> administrator, but I have to glue mod_auth_pam into httpd and I'm not > >> sure how to duplicate it for java web services. If this is java web services your having the problem with you can also use kerberos with SOAP/XML/RPC. But the catch is only 128Bit Encryption. Another option maybe LDAP under Apache. john