[rt-users] SSO (Single Sign-On) for RT

t s zzzz67 at hotmail.com
Tue May 17 13:18:54 EDT 2016


4.2

--- Original Message ---

From: "Lush, Aaron" <alush at scentral.k12.in.us>
Sent: May 17, 2016 1:15 PM
To: "t s" <zzzz67 at hotmail.com>
Cc: rt-users at lists.bestpractical.com
Subject: Re: [rt-users] SSO (Single Sign-On) for RT



Which version of RT are you running?

Sincerely,

Aaron Lush
Network Administrator
South Central Community School Corporation
(219) 767-2266 ext. 1111

On Tue, May 17, 2016 at 12:06 PM, t s <zzzz67 at hotmail.com<mailto:zzzz67 at hotmail.com>> wrote:

Anyone have any direction on how to set up SSO for RT for Windows Active Directory?


I am currently in the middle of following this set of directions from a SafeSquid app (https://www.safesquid.com/content-filtering/integrating-linux-host-windows-ad-kerberos-sso-authentication) that seems like it would mostly apply to set up the service principals, user accounts, etc.  This seems like the best set of directions I could find, unless anyone knows of any that are better?  Most sites seem to assume Kerberos is already set up and working with the appropriate permissions.

[https://www.safesquid.com/sites/default/files/swg-16-9W_1.png]<https://www.safesquid.com/content-filtering/integrating-linux-host-windows-ad-kerberos-sso-authentication>

Integrating a Linux Host with a Windows AD for Kerberos ...<https://www.safesquid.com/content-filtering/integrating-linux-host-windows-ad-kerberos-sso-authentication>
www.safesquid.com<http://www.safesquid.com>
Validate that IP of all our systems are resolvable by our DNS provider. Add the Linux host safesquid1 as a New Host in the DNS server's configuration such that it's ...



And I am using:


Set($WebExternalAuth , 1);
Set($WebFallbackToInternalAuth , undef);
Set($WebExternalGecos , undef);
Set($WebExternalAuto , undef);

with the ExternalAuth extension.


Also using nginx with mod_auth_kerb.


Thanks,

ts

---------
RT 4.4 and RTIR Training Sessions https://bestpractical.com/training
* Washington DC - May 23 & 24, 2016



Email Confidentiality Notice: This email message, including all attachments, is for the sole use of the intended recipient(s) and contains confidential information. If you are not the intended recipient, you may not use, disclose, print, copy or disseminate this information. Please reply and notify the sender, delete the message and any attachments and destroy all copies.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20160517/5900e501/attachment.htm>


More information about the rt-users mailing list