[28754] in Kerberos
Re: Error authenticating RHEL4 apache from Win 2k3 AD Kerberos
daemon@ATHENA.MIT.EDU (Nabeel Moidu)
Mon Nov 19 03:19:34 2007
Message-ID: <3fd6d7cc0711190019n285e55e2m8ebd99cd9d1b8f1e@mail.gmail.com>
Date: Mon, 19 Nov 2007 11:19:10 +0300
From: "Nabeel Moidu" <nabeelmoidu@gmail.com>
To: kerberos@mit.edu
In-Reply-To: <3fd6d7cc0711190014mcbd7826o387d5309465292c8@mail.gmail.com>
MIME-Version: 1.0
Content-Disposition: inline
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Nov 19, 2007 11:14 AM, Nabeel Moidu <nabeelmoidu@gmail.com> wrote:
...............
> Now I've configured Apache as follows :
> [root@test ~]# cat /etc/httpd/conf/httpd.conf | grep Realm -B 8 -A 10
> # features.
> #
> <Directory />
> Options FollowSymLinks
> AllowOverride None
> AuthType Kerberos
> AuthName "Kerberos Login"
> KrbAuthRealm foo.bar
> KrbServiceName HTTP
> KrbMethodNegotiate on
> Krb5KeyTab /var/www/krb5.keytab
> KrbVerifyKDC off
> #require user apache1@FOO.BAR
> require valid-user
>
> </Directory>
>
> My keytab file is as follows
>
> [root@test ~]# cat /var/www/krb5.keytab
> HTTP/test.foo.bar@FOO.BAR
> [root@test ~]# ll /var/www/krb5.keytab
> -rw-r--r-- 1 apache apache 36 Nov 19 10:08 /var/www/krb5.keytab
> [root@test ~]#
The path entry in the apache httpd.conf is /var/ww/krb5.keytab. I'd
just tried moving it from /etc/krb5.keytab to /var/www but it didn't
make any difference.
Thanks in advance
Nabeel
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
