You are not logged in.

Announcement

 Téléchargez la dernière version stable de GLPI      -     Et vous, que pouvez vous faire pour le projet GLPI ? :  Contribuer
 Download last stable version of GLPI                      -     What can you do for GLPI ? :  Contribute

Pages: 1

#1 2010-07-02 18:34:49

sean.tapscott
Member
Registered: 2010-06-16
Posts: 303

NTLM Authentication Fallback to login?

I have my NTLM Authentication up and working.  I used the methods described here

http://www.glpi-project.org/wiki/doku.p … acorev0.72

And here:

http://adldap.sourceforge.net/wiki/doku … entication

The authentication works, but there are some people for whom NTLM doesn't work, or perhaps I wouldn't like it to work for them.  If their authentication fails right now, they just get an "Unauthorized User" screen, and I'd prefer that to be a GLPI login screen instead if the NTLM authentication fails.  I'm sure this is possible, but my configuration isn't allowing it. 

My glpi.conf file:

<Directory "/var/www/html">
AuthName "NTLM Authentication"
NTLMAuth on
NTLMBasicAuth on
NTLMBasicRealm XOXIDEINC
AuthType NTLM
NTLMAuthHelper "/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp"
NTLMBasicAuthoritative off
require valid-user
</Directory>

Any ideas on a simple configuration change I could make?  If I just remove the "require", then no username is passed to GLPI and it goes straight to the login screen.  I'd really like to be able to just pass the information, and have the information sign them in, not control the actual access to that directory.  Not sure if that's possible using mod_auth_ntlm_winbind though.

Now using 0.78.1 on CentOS.

Offline

Pages: 1

Board footer

Powered by FluxBB