You are not logged in.
Pages: 1
Hi,
I'm facing some problems in xampp SSO authentication with glpi: my browser keeps asking my AD username and password.
I have followed a lot of steps from others users, and I guess I'm missing something. Can anyone help me?
Info/Steps:
- Apache/2.4.25 (Win32) mod_authnz_sspi/0.1.1 OpenSSL/1.0.2j PHP/5.6.30
- Windows Server 2008 R2
Inside httpd.conf (apache)
# Modules
#LoadModule sspi_auth_module modules/mod_auth_sspi.so
LoadModule authnz_sspi_module modules/mod_authnz_sspi.so
# Virtual hosts - GLPI
Include conf/extra/glpi.conf
# GLPI SSO CONFIGURATION
<Directory "F:/xampp/htdocs/GLPI">
Options None
AllowOverride All
Order allow,deny
Allow from all
#AuthName "SSPI Protected Place"
AuthType SSPI
SSPIAuth On
SSPIAuthoritative On
SSPIOfferBasic On
SSPIOmitDomain On
Require valid-user
</Directory>
<Directory "F:/xampp/htdocs/glpi/plugins/fusioninventory>
Satisfy Any
Allow from all
</Directory>
Inside glpi.conf
Alias /glpi "F:/xampp/htdocs/glpi"
<Directory "F:/xampp/htdocs/glpi">
Options None
AllowOverride Limit Options FileInfo
<IfModule mod_authz_core.c>
Require all granted
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Allow from all
</IfModule>
</Directory>
<Directory "F:/xampp/htdocs/glpi/install_ori">
# Install is only allowed via local access (from the GLPI server).
# Add your IP address if you need it for remote installation,
# but remember to remove it after installation for security.
<IfModule mod_authz_core.c>
# Apache 2.4
Require local
# Require ip ##.##.##.##
</IfModule>
<IfModule !mod_authz_core.c>
# Apache 2.2
Order Deny,Allow
Deny from All
Allow from 127.0.0.1
Allow from ::1
</IfModule>
ErrorDocument 403 "<p><b>Restricted area.</b><br />Only local access allowed.<br />Check your configuration or contact your administrator.</p>"
<IfModule mod_php5.c>
# migration could be very long
php_value max_execution_time 0
php_value memory_limit -1
</IfModule>
</Directory>
<Directory "F:/xampp/htdocs/glpi/config">
Order Allow,Deny
Deny from all
</Directory>
<Directory "F:/xampp/htdocs/glpi/locales">
Order Allow,Deny
Deny from all
</Directory>
<Directory "F:/xampp/htdocs/glpi/install_ori/mysql">
Order Allow,Deny
Deny from all
</Directory>
<Directory "F:/xampp/htdocs/glpi/scripts">
Order Allow,Deny
Deny from all
</Directory>
<VirtualHost *:80>
DocumentRoot "F:/xampp/htdocs/glpi"
ServerName servicedesk.mydomain.com
</VirtualHost>
Last edited by tcguser (2017-08-31 18:14:29)
Offline
Have you checked Apache logs?
If auth fails you should find some messages there.
Also check Windows Security log (both on local server and on AD DC) to verify user is successfully authenticated with NTLM.
Offline
Pages: 1