Apache authentication: NTLM Single Signon
Ensure that all users requiring authentication are added to the last line.
NTLM single sign on under Apache
Note: This guide assumes you have Samba configured and connected to a Windows domain
Install needed packages:
# apk add apache2 apache-mod-auth-ntlm-winbind
Add apache user to winbind group:
# addgroup <user> winbind
add to httpd.conf (virtual host):
Contents of /etc/apache2/httpd.conf
<nowiki># /etc/apache2/httpd.conf
AuthType NTLM
NTLMauth on
NTLMAuthHelper "/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp"
Require user <users>
</nowiki>
Alternatively, allow all valid users who are members of the winbind domain with the following:
Contents of /etc/apache2/httpd.conf
<nowiki># /etc/apache2/httpd.conf
AuthType NTLM
NTLMauth on
NTLMAuthHelper "/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp -require-membership-of="WORKGROUP\Domain Users""
Require valid user
</nowiki>
Restart Apache and test:
# rc-service apache2 restart
This article is issued from Alpinelinux. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.