[rt-users] Comprehension Question about LDAP and SSO

john s. fireskyer at gmx.de
Thu Mar 3 03:07:22 EST 2011 

Good morning all 

I have on more Question in Relation to Authentification with Kerberos

I would like to  use an windows 2008 server with AD, and an Web Application
( RT) on a linux sever with Apache and Kerberos Module  system.

And the Kerberos Stuff is handeld by the Win2008 AD...

So .. so far so good.  But it is possible to make an Authentification with
the AD Login Names from the Whole Network, not only the Kerberos Login
Account?

For Example if i go through an log file i would like to see that a certain
user from the network has logged in on the apache server and not only the
kerberos account should be appeard in the log file. 

is this possible??


best regards john 






john s. wrote:
> 
> 
> mcb30 wrote:
>> 
>> On Friday 25 Feb 2011 13:41:29 john s. wrote:
>>> Hm... sounds good and important
>>> 
>>> But what I just don't see.
>>> 
>>> How is the relationship between ldap and kerberos or ntlm?
>>> 
>>> In the  Wiki Directory  there is is an How to which describes the
>>> implemantation from LDAP into RT
>>> 
>>> http://requesttracker.wikia.com/wiki/LdapSiteConfigSettingsForActiveDirecto
>>> ry
>>> 
>>> http://requesttracker.wikia.com/wiki/LdapSiteConfigSettingsForActiveDirect
>>> ory
>>> 
>>> so if i do this below...
>>> 
>>> should i need keberos or ntlm configs anymore??
>>> 
>>> sorry i dont get it
>> 
>> As far as authentication goes: LDAP gives you the ability to log in to RT 
>> using the same username and password that you would use for logging in to 
>> Active Directory.  Kerberos gives you the ability to be transparently 
>> authenticated to RT without having to re-enter your username and
>> password.
>> 
>> Michael
>> 
>> 
> 
> 
> Okay now i got it  :)
> 
> 
> Edit: once again ..sorry 
> . is it possible to integrate kerberos directly in rt or can  the
> authentification process  only handled by apache or another webserver  ?
> 
> thnnx michael  
> 
> 
> 


-----
best regards john 
-- 
View this message in context: http://old.nabble.com/Comprehension-Question-about-LDAP-and-SSO-tp30995959p31056833.html
Sent from the Request Tracker - User mailing list archive at Nabble.com.

More information about the rt-users mailing list