[hobbit] Securing Hobbit from visitors: authenitcating agains windows domain

Josh Luthman josh at imaginenetworksllc.com
Wed Mar 12 18:49:17 CET 2008


That is very cool information, but everyone is out and about so we don't use
a domain =(

On 3/12/08, Stef Coene <stef.coene at docum.org> wrote:
>
> On Wednesday 12 March 2008, Josh Luthman wrote:
> > I am curious to see how the crew here on the mailing list secures their
> > Hobbit from the outside world.  I need to have the WWW pages visible
> from
> > every IP but only from certain people, therefor I need to use users and
> > passwords.  Our Hobbitmon is viewed via cell phones and computers (IE
> and
> > Firefox) and protected by an HTTP(S) login currently.  The problem is
> that
> > with three different Directory statements in httpd.conf, you need to
> login
> > three times every time you restart Firefox.
> >
> > Also, how many businesses have Hobbitmon wide open for the viewing, such
> as
> > Henrik's demo, if any?
> I just found out the nice module Apache2-AuthenMSAD.  Very small module,
> very
> easy to install, very easy to change and adapt.  It authenticate the user
> against the windows domain, it just tries an ldap connection with the
> supplied username and password.  This is the authentication part of
> apache:
>
> AuthName "Windows domain login"
> AuthType Basic
>
> # Authentication  method/handler
> PerlAuthenHandler Apache2::AuthenMSAD
> PerlSetVar MSADDomain WindowsDomain
> PerlSetVar MSADServer DomainController
>
> # Require lines can be any of the following -- any user, one of a list
> require valid-user
>
>
> Stef
>
> To unsubscribe from the hobbit list, send an e-mail to
> hobbit-unsubscribe at hswn.dk
>
>
>


-- 
Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373

Those who don't understand UNIX are condemned to reinvent it, poorly.
--- Henry Spencer
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.xymon.com/pipermail/xymon/attachments/20080312/1b59eb72/attachment.html>


More information about the Xymon mailing list