We are currently using NT4 domains, but there are plans in place to move
to Active Directory. Until that time though I think I would feel more
comfortable with UNIX authentication. But I still need to know how to
lock users out from logging into the system for anything besides svn
access.
However, if you have any documentation on what you've done in the past
for Windows authentication, I'd love to see it. :-) Maybe I'll find
something that seems supportable.
On Mon, 16 Feb 2004 08:19:08 -0700, "Kevin Williams"
<kevin_w69@hotmail.com> said:
> Perhaps someone with Apache admin experience can help. Isn't there a
> mod_auth_ldap module? I know Active Directory has an LDAP interface as
> well
> as Kerberos. Perhaps there's an Apache module for PAM, and PAM can be
> tied
> to Samba to authenticate to a NT4-style Windows domain. I've done the PAM
> ->
> Samba -> NT4 domain before, where the Linux box users use their NT login
> &
> password.
>
> It's not easy interfacing with Windows domains, but it is possible.
>
>
> >From: "Carsten Schurig" <cs-ml-0110031013@ebz-dresden.de>
> >To: "Subversion User Liste (E-Mail)" <users@subversion.tigris.org>
> >Subject: RE: Managing users
> >Date: Mon, 16 Feb 2004 16:09:33 +0100
> >
> >Justin Johnson <mailto:justinjohnson@fastmail.fm> wrote on Monday,
> >February 16, 2004 3:56 PM:
> >
> >
> > > I'm looking for the easiest way to manage (add/remove) subversion
> > > users. I was hoping to find some way to hook into their NT login and
> > > password via the domain controllor, but the current method (sspi,
> > > etc) seems rather unsupported/unmaintained, so I don't feel
> > > comfortable going in that direction.
> >
> >I'm using this option and it works well. For that I've installed apache
> >on our Win2K server. I configured it to listen for https:// on a
> >non-standard port and not to listen on any other ports. I don't know if
> >you can setup apache on a Linux or any other unix machine and do a
> >password lookup on a windows DC.
> >
> >Cheers,
> > Carsten
> >
> >
> >---------------------------------------------------------------------
> >To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
> >For additional commands, e-mail: users-help@subversion.tigris.org
> >
>
> _________________________________________________________________
> Check out the great features of the new MSN 9 Dial-up, with the MSN
> Dial-up
> Accelerator. http://click.atdmt.com/AVE/go/onm00200361ave/direct/01/
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
> For additional commands, e-mail: users-help@subversion.tigris.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Mon Feb 16 16:44:02 2004