|
Home > Archive > Netware Webserver > December 2005 > Enabling authentication for Apache and GW 6
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Enabling authentication for Apache and GW 6
|
|
| Matt Ray 2005-11-24, 2:45 am |
| Once we get the problem above resolved and I get my websites back up, I'd like to figure out how to make one of my sites an employee site, like an intranet. As I said before I'm running GW6, SP5 and Apache/1.3.31 (NETWARE) and Tomcat33.
What I'd like it to do is on my main site, have a link that says, Intranet or Employees only, and then when they click on that link, it asks them for their nds userid and password, obviously in SSL mode, and allows them access to the information I want them to have access to. I know because of NDS,for the most part, it uses edirectory for the authentication piece, but I don't know how to put the two together.
I'd love to have step by step on this, but if there's a really good doc that tells me exactly how to do this, that would great. I've looked around a lot, but sometimes it's like looking for a needle in a haystack trying to find something like this.
Thanks again for any help on this.
Matt
Matt Ray
MC Consulting - GWGuru.com
MCNE, CNI, LPI
mray@gwguru.com
661.588.4400 - Phone
661.885.4441 - Fax
AIM ID: mateoray
SkypeID, MSN & Yahoo!: mraymus
http://www.gwguru.com
This message sent using GroupWise 7, a powerful Collaboration tool for your Enterprise! | |
| Automatic reply 2005-11-29, 7:45 am |
| Matt,
It appears that in the past few days you have not received a response to your
posting. That concerns us, and has triggered this automated reply.
Has your problem been resolved? If not, you might try one of the following options:
- Do a search of our knowledgebase at http://support.novell.com/search/kb_index.jsp
- Check all of the other support tools and options available at
http://support.novell.com.
- You could also try posting your message again. Make sure it is posted in the
correct newsgroup. (http://support.novell.com/forums)
Be sure to read the forum FAQ about what to expect in the way of responses:
http://support.novell.com/forums/faq_general.html
If this is a reply to a duplicate posting, please ignore and accept our apologies
and rest assured we will issue a stern reprimand to our posting bot.
Good luck!
Your Novell Product Support Forums Team
http://support.novell.com/forums/
| |
| Matt Ray 2005-11-29, 5:45 pm |
| No quick and dirty docs out there for enabling authentication?
[vbcol=seagreen]
Once we get the problem above resolved and I get my websites back up, I'd like to figure out how to make one of my sites an employee site, like an intranet. As I said before I'm running GW6, SP5 and Apache/1.3.31 (NETWARE) and Tomcat33.
What I'd like it to do is on my main site, have a link that says, Intranet or Employees only, and then when they click on that link, it asks them for their nds userid and password, obviously in SSL mode, and allows them access to the information I want them to have access to. I know because of NDS,for the most part, it uses edirectory for the authentication piece, but I don't know how to put the two together.
I'd love to have step by step on this, but if there's a really good doc that tells me exactly how to do this, that would great. I've looked around a lot, but sometimes it's like looking for a needle in a haystack trying to find something like this.
Thanks again for any help on this.
Matt
Matt Ray
MC Consulting - GWGuru.com
MCNE, CNI, LPI
mray@gwguru.com
661.588.4400 - Phone
661.885.4441 - Fax
AIM ID: mateoray
SkypeID, MSN & Yahoo!: mraymus
http://www.gwguru.com
This message sent using GroupWise 7, a powerful Collaboration tool for your Enterprise!
| |
| Anders Gustafsson 2005-11-29, 5:45 pm |
| Matt Ray,
> No quick and dirty docs out there for enabling authentication?
>
Sure. Do a search on developer.novell.com for apache+secure
- Anders Gustafsson, Engineer, CNE6, ASE
NSC Volunteer Sysop
Pedago, The Aaland Islands (N60 E20)
Novell does not monitor these forums officially.
Enhancement requests for all Novell products may be made at
http://support.novell.com/enhancement
Using VA 5.51 build 315 on Windows 2000 build 2195
| |
| Sebastian Cerazy 2005-12-01, 8:45 pm |
| How about :
<VirtualHost 10.0.0.5:443>
ServerName staff.spgs.org
DocumentRoot "INTRANET:/home/staff"
# This is to work around a bug in IE that doesn't handle the server
shutting
# down keepalive requests on secure sockets
BrowserMatch "MSIE" nokeepalive downgrade-1.0 force-response-1.0
<IfModule util_ldap.c>
LoadModule auth_ldap_module modules/authldap.nlm
<Directory "INTRANET:/home/staff">
Allow from all
Order deny,allow
AllowOverride None
AuthType Basic
AuthName "Staff ONLY"
AuthLDAPAuthoritative On
AuthLDAPURL "ldap://ldap.spgs.org:389/o=SPGS,c=UK?cn"
# require valid-user
require group cn=Group1,ou=Groups,o=SPGS,c=UK
</Directory>
</IfModule>
</VirtualHost>
"Matt Ray" <mray@gwguru.com> wrote in message
news:438C04CE.CD65.004F.0@gwguru.com...
No quick and dirty docs out there for enabling authentication?
[vbcol=seagreen]
Once we get the problem above resolved and I get my websites back up, I'd
like to figure out how to make one of my sites an employee site, like an
intranet. As I said before I'm running GW6, SP5 and Apache/1.3.31
(NETWARE) and Tomcat33.
What I'd like it to do is on my main site, have a link that says, Intranet
or Employees only, and then when they click on that link, it asks them for
their nds userid and password, obviously in SSL mode, and allows them access
to the information I want them to have access to. I know because of
NDS,for the most part, it uses edirectory for the authentication piece, but
I don't know how to put the two together.
I'd love to have step by step on this, but if there's a really good doc that
tells me exactly how to do this, that would great. I've looked around a
lot, but sometimes it's like looking for a needle in a haystack trying to
find something like this.
Thanks again for any help on this.
Matt
Matt Ray
MC Consulting - GWGuru.com
MCNE, CNI, LPI
mray@gwguru.com
661.588.4400 - Phone
661.885.4441 - Fax
AIM ID: mateoray
SkypeID, MSN & Yahoo!: mraymus
http://www.gwguru.com
This message sent using GroupWise 7, a powerful Collaboration tool for your
Enterprise!
| |
| ashland_removethis_@ashland.edu 2005-12-06, 5:45 pm |
| We have this working. Here is the section from our .conf file.
We've replaced our tree name and contexts with generics. You would insert
the contexts you wish to have searched for users. The syntax is
OU=usercontext.OU=OrganizationalUnit.O=Organization space next context.
LoadModule lcgi_module modules/mod_lcgi.nlm
LoadModule nds_auth_module modules/mod_nds.nlm
LoadModule tls_module modules/mod_tls.nlm
##############################
#Start EagleWeb Configuration#
##############################
Alias /eagleweb "Vol1:/eagleweb"
<Directory Vol1:/eagleweb>
Options Indexes FollowSymLinks
AllowOverride None
Order allow,deny
allow from all
</Directory>
<VirtualHost xxx.xxx.xxx.xxx>
ServerAdmin xxxxxxxxx@ashland.edu
DocumentRoot Vol1:/eagleweb
ServerName eagleweb.ashland.edu
ErrorLog logs/error_log
</VirtualHost>
<Directory Vol1:/eagleweb/student>
Options Indexes FollowSymLinks
AllowOverride
Order allow,deny
Allow from all
AuthName "Internal Web Pages"
AuthType Basic
AuthNDSTree Treename
AuthNDSContext OU=usercontext1.OU=Users.OU=AU-Main.O=Organization
OU=Acadtech.OU=Users.OU=AU-Main.O=Organization
OU=usercontext2.OU=Users.OU=AU-Main.O=Organization
AuthNDSRequireSSL OFF
require valid-user
</Directory>
I think the other persons post is for Apache2 using LDAP authentication.
> No quick and dirty docs out there for enabling authentication? =20
>
>
> Once we get the problem above resolved and I get my websites back up, I'd =
> like to figure out how to make one of my sites an employee site, like an =
> intranet. As I said before I'm running GW6, SP5 and Apache/1.3.31 =
> (NETWARE) and Tomcat33. =20
>
> What I'd like it to do is on my main site, have a link that says, Intranet =
> or Employees only, and then when they click on that link, it asks them for =
> their nds userid and password, obviously in SSL mode, and allows them =
> access to the information I want them to have access to. I know because =
> of NDS,for the most part, it uses edirectory for the authentication piece, =
> but I don't know how to put the two together.=20
>
> I'd love to have step by step on this, but if there's a really good doc =
> that tells me exactly how to do this, that would great. I've looked =
> around a lot, but sometimes it's like looking for a needle in a haystack =
> trying to find something like this. =20
>
> Thanks again for any help on this.=20
>
> Matt=20
>
>
>
>
> Matt Ray
> MC Consulting - GWGuru.com
> MCNE, CNI, LPI
> mray@gwguru.com=20
> 661.588.4400 - Phone
> 661.885.4441 - Fax
> AIM ID: mateoray
> SkypeID, MSN & Yahoo!: mraymus
> http://www.gwguru.com=20
> This message sent using GroupWise 7, a powerful Collaboration tool for =
> your Enterprise!
>
| |
| Matt Ray 2005-12-07, 5:45 pm |
| Thanks.
[vbcol=seagreen]
am >>>
How about :
<VirtualHost 10.0.0.5:443>
ServerName staff.spgs.org
DocumentRoot "INTRANET:/home/staff"
# This is to work around a bug in IE that doesn't handle the server
shutting
# down keepalive requests on secure sockets
BrowserMatch "MSIE" nokeepalive downgrade-1.0 force-response-1.0
<IfModule util_ldap.c>
LoadModule auth_ldap_module modules/authldap.nlm
<Directory "INTRANET:/home/staff">
Allow from all
Order deny,allow
AllowOverride None
AuthType Basic
AuthName "Staff ONLY"
AuthLDAPAuthoritative On
AuthLDAPURL "ldap://ldap.spgs.org:389/o=SPGS,c=UK?cn"
# require valid-user
require group cn=Group1,ou=Groups,o=SPGS,c=UK
</Directory>
</IfModule>
</VirtualHost>
"Matt Ray" <mray@gwguru.com> wrote in message
news:438C04CE.CD65.004F.0@gwguru.com...
No quick and dirty docs out there for enabling authentication?
[vbcol=seagreen]
Once we get the problem above resolved and I get my websites back up, I'd
like to figure out how to make one of my sites an employee site, like an
intranet. As I said before I'm running GW6, SP5 and Apache/1.3.31
(NETWARE) and Tomcat33.
What I'd like it to do is on my main site, have a link that says, Intranet
or Employees only, and then when they click on that link, it asks them for
their nds userid and password, obviously in SSL mode, and allows them
access
to the information I want them to have access to. I know because of
NDS,for the most part, it uses edirectory for the authentication piece, but
I don't know how to put the two together.
I'd love to have step by step on this, but if there's a really good doc
that
tells me exactly how to do this, that would great. I've looked around a
lot, but sometimes it's like looking for a needle in a haystack trying to
find something like this.
Thanks again for any help on this.
Matt
Matt Ray
MC Consulting - GWGuru.com
MCNE, CNI, LPI
mray@gwguru.com
661.588.4400 - Phone
661.885.4441 - Fax
AIM ID: mateoray
SkypeID, MSN & Yahoo!: mraymus
http://www.gwguru.com
This message sent using GroupWise 7, a powerful Collaboration tool for your
Enterprise!
| |
| Matt Ray 2005-12-07, 5:45 pm |
| Thanks!
We have this working. Here is the section from our .conf file.
We've replaced our tree name and contexts with generics. You would insert
the contexts you wish to have searched for users. The syntax is
OU=usercontext.OU=OrganizationalUnit.O=Organization space next context.
LoadModule lcgi_module modules/mod_lcgi.nlm
LoadModule nds_auth_module modules/mod_nds.nlm
LoadModule tls_module modules/mod_tls.nlm
##############################
#Start EagleWeb Configuration#
##############################
Alias /eagleweb "Vol1:/eagleweb"
<Directory Vol1:/eagleweb>
Options Indexes FollowSymLinks
AllowOverride None
Order allow,deny
allow from all
</Directory>
<VirtualHost xxx.xxx.xxx.xxx>
ServerAdmin xxxxxxxxx@ashland.edu
DocumentRoot Vol1:/eagleweb
ServerName eagleweb.ashland.edu
ErrorLog logs/error_log
</VirtualHost>
<Directory Vol1:/eagleweb/student>
Options Indexes FollowSymLinks
AllowOverride
Order allow,deny
Allow from all
AuthName "Internal Web Pages"
AuthType Basic
AuthNDSTree Treename
AuthNDSContext OU=usercontext1.OU=Users.OU=AU-Main.O=Organization
OU=Acadtech.OU=Users.OU=AU-Main.O=Organization
OU=usercontext2.OU=Users.OU=AU-Main.O=Organization
AuthNDSRequireSSL OFF
require valid-user
</Directory>
I think the other persons post is for Apache2 using LDAP authentication.
[vbcol=seagreen]
> No quick and dirty docs out there for enabling authentication? =20
>
>
> Once we get the problem above resolved and I get my websites back up, I'd
=
> like to figure out how to make one of my sites an employee site, like an
=
> intranet. As I said before I'm running GW6, SP5 and Apache/1.3.31 =
> (NETWARE) and Tomcat33. =20
>
> What I'd like it to do is on my main site, have a link that says, Intranet
=
> or Employees only, and then when they click on that link, it asks them for
=
> their nds userid and password, obviously in SSL mode, and allows them =
> access to the information I want them to have access to. I know because
=
> of NDS,for the most part, it uses edirectory for the authentication piece,
=
> but I don't know how to put the two together.=20
>
> I'd love to have step by step on this, but if there's a really good doc =
> that tells me exactly how to do this, that would great. I've looked =
> around a lot, but sometimes it's like looking for a needle in a haystack
=
> trying to find something like this. =20
>
> Thanks again for any help on this.=20
>
> Matt=20
>
>
>
>
> Matt Ray
> MC Consulting - GWGuru.com
> MCNE, CNI, LPI
> mray@gwguru.com=20
> 661.588.4400 - Phone
> 661.885.4441 - Fax
> AIM ID: mateoray
> SkypeID, MSN & Yahoo!: mraymus
> http://www.gwguru.com=20
> This message sent using GroupWise 7, a powerful Collaboration tool for =
> your Enterprise!
>
|
|
|
|
|