On Nov 17, 2009, at 11:50 AM, Slansky Lukas wrote: >> Hello. >> We're using CoSign configured to authenticate over LDAP. Now we're in >> need to have the possibility to take credentials from Windows computers >> in the AD domain. >> As I have seen in release notes there is a way to use SPNEGO >> (Kerberos/NTLM?). But there is no documentation for this. >> >> Please can you confirm that CoSign can do this? If so, can you write >> some short howto?
> Yes, cosign can do this. Here's an example setup from Penn State. You > need to have mod_auth_kerb installed on your cosign.cgi host to handle the > actual SPNEGO transaction; cosign.cgi just extracts REMOTE_USER if the > "negotiate" keyword is configured correctly in cosign.conf (see cosign.conf(5)). > > http://users.bx.psu.edu/~phalenor/weblogin/weblogin.bx.psu.edu-ssl > http://users.bx.psu.edu/~phalenor/weblogin/cosign-cgi.conf > > A wiki page detailing how to configure cosign+spnego would be a nice contribution to the project. > > Andrew Thanks a lot for this. I have examined your configs and this solution is be very nice. I have already implemented it in our testing environment and everythings seems to be working. I'll try to make some short howto into weblogin's wiki. It would be very helpful for others. Thanks for it, Lukas ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ Cosign-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/cosign-discuss
