[rt-users] Authentication
Les Mikesell
les at futuresource.com
Wed Sep 14 16:38:04 EDT 2005
On Wed, 2005-09-14 at 12:56, Dave Sill wrote:
> Atom Powers <apowers at digipen.edu> writes:
>
> > I use Apache's auth_pam; there is also an ldap plugin.
>
> OK... So how does one make auth_pam work with RT?
You have to build mod_auth_pam yourself if your distribution
doesn't include it and follow it's directions for putting
the loadmodule statement into httpd.conf. Then you configure
apache for basic authentication and put something like:
#%PAM-1.0
auth required pam_stack.so service=system-auth
account required pam_permit.so
in /etc/pam.d/httpd
(the system-auth is a RedHat concept to use everything you
set with authconfig, and pam_permit on the account lets you
use a remote authentication method (like NT domain) for people
without local accounts. You also have to make /etc/shadow
readable by the apache group if you are using it. That's
probably a bad idea security-wise and perhaps why it isn't
included in the distribution.
--
Les Mikesell
les at futuresource.com
More information about the rt-users
mailing list