Hi Edward,
Ok - so I know I can get LDAP lookups working, but should I use LDAP or
Kerberos? As I understand it LDAP is for directory lookups (phone #s,
contacts etc), but Kerberos is intended for account authentication?
Thanks,
Adrian
-----Original Message-----
From: Harvey, Edward [mailto:Edward.Harvey_at_patni.com]
Sent: 02 April 2008 05:13
To: Greg Thomas; Adrian Marsh; users_at_subversion.tigris.org
Subject: RE: Authentication in a domain
Yup. LDAP, or Kerberos. I believe apache & svn support both.
It might be tough to figure it out though, unless you're really good
with that sort of stuff. So if you've never done it before, I'll
suggest a good bit of research & experiment time.
> -----Original Message-----
> From: Greg Thomas [mailto:thomasgd_at_omc.bt.co.uk]
> Sent: Monday, March 31, 2008 12:41 PM
> To: Adrian Marsh; users_at_subversion.tigris.org
> Subject: Re: Authentication in a domain
>
> On Mon, 31 Mar 2008 17:29:33 +0100, "Adrian Marsh"
> <Adrian.Marsh_at_ubiquisys.com> wrote:
>
> >1) Authentication against a domain controller (Windows 2003), rather
> >than a separate user/password
> >2) Per repository and also sub-folder permissions (allow some
> >users/groups to access some folders, deny to others).
> >3) Secure network transport
>
> Apache using https and mod_authnz_ldap
> (http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html) will do
> all of this for you, with no problems.
>
> Greg
> --
> This post represents the views of the author and does
> not necessarily accurately represent the views of BT.
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe_at_subversion.tigris.org
> For additional commands, e-mail: users-help_at_subversion.tigris.org
This e-mail message may contain proprietary, confidential or legally
privileged information for the sole use of the person or entity to whom
this message was originally addressed. Any review, e-transmission
dissemination or other use of or taking of any action in reliance upon
this information by persons or entities other than the intended
recipient is prohibited. If you have received this e-mail in error
kindly delete this e-mail from your records. If it appears that this
mail has been forwarded to you without proper authority, please notify
us immediately at netadmin_at_patni.com and delete this mail.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: users-help_at_subversion.tigris.org
Received on 2008-04-03 12:27:42 CEST