[32488] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

KrbMethodNegotiate ProxyPass

daemon@ATHENA.MIT.EDU (Nicolas Jaunet)
Tue Jul 6 05:19:29 2010

MIME-Version: 1.0
Date: Tue, 6 Jul 2010 11:19:23 +0200
Message-ID: <AANLkTimD3IxwDzFS8pXS8Csa1sSxaHGFs5Lwu8GWVXNg@mail.gmail.com>
From: Nicolas Jaunet <nicolas.jaunet@gmail.com>
To: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

Hello !

So, I try to install sso kerberos on a debian server.
This is my conf of my virtualhost :

<VirtualHost monsite.domain.com>
ServerName monsite.domain.com
<location />
AuthType Kerberos
AuthName "Kerberos Login"
KrbAuthRealms DOMAIN.COM
KrbServiceName HTTP/monsite.domain.com@DOMAIN.COM
Krb5Keytab /etc/apache2/monsite.keytab
KrbMethodNegotiate on
KrbMethodK5Passwd on
KrbVerifyKDC off
KrbSaveCredentials on
require valid-user
</location>
</VirtualHost>

I use proxyreverse to make a connection from another host :

<Location /lien/>
Order allow,deny
allow from all
</Location>
ProxyPass /lien  http://autresite.domain.com:PORT/lien
ProxyPassReverse /lien  http://autresite.domain.com:PORT/lien

The problem must be KrbMethodNegotiate because when I put it "on",
http://monsite.domain.com/lien/ didn't work (401 error), but when I put
"off", it works.
Someone can help me please ?
Thanks and sorry for my english.
________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[32488] in Kerberos

KrbMethodNegotiate ProxyPass

daemon@ATHENA.MIT.EDU (Nicolas Jaunet)Tue Jul 6 05:19:29 2010

daemon@ATHENA.MIT.EDU (Nicolas Jaunet)
Tue Jul 6 05:19:29 2010