Il giorno mar, 08/08/2006 alle 20.46 +0200, Federico Di Gregorio ha scritto: > If you use Trac with Apache (HTTP) authentication (instead of form > authentication like the one provided by the TracAccountManager plug-in) > you can use mod_ntlm and have your users single sign-on on with the > credentials provided by your windows domain. (Well.. maybe they have to > provide the credentials again: I never configured NTLM on Apache, only > on Squid where it does SSO.)
Sorry for answering to myself but a fast search showed that I was in fact wrong. To do SSO with Apache NTLM is not enough and you need SPNEGO, implemented in the mod_auth_gss_krb5. You can find more information in this article: http://www.onlamp.com/pub/a/onlamp/2003/09/11/kerberos.html -- Federico Di Gregorio http://people.initd.org/fog Debian GNU/Linux Developer [EMAIL PROTECTED] INIT.D Developer [EMAIL PROTECTED] Mi piace schioccare la lingua fortemente. -- Maria Luisa Benedetta Panzani
signature.asc
Description: Questa รจ una parte del messaggio firmata digitalmente
_______________________________________________ Trac mailing list [email protected] http://lists.edgewall.com/mailman/listinfo/trac
