I've a Win2008-r2 server with an Active Directory domain.
I installed an Apache server on the same machine too.
Now I would like to do SSO authentication within this Web-server.
mod_auth_kerb is the "state-of-art" to achieve that.
I may be wrong, but on http://modauthkerb.sourceforge.net/ I noticed the module fits well under Linux, but I didn't see any convenient way to use it under Windows.
Is there an official way to compile it with MSVC?
Is there another alternative module more "Windows compliant"?
I am in the process of setting this up myself in a Linux environment. I think you need to use mod_authnz_ldap.
See this link.
http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html
Related
I'm using CAS 5.2.4, deployed on Tomcat 9.0.8, running on Windows 10. I want to connect to LDAP, but I don't know where the cas.properties has to be placed.
I have already placed it in :
C:\etc\cas
C:\etc\cas\config
'tomcat'\cas\etc\cas
'tomcat'\cas\WEB-INF\classes
Ok, the problem was that I changed the property spring.profiles.active, I set it as production, now I change it, again, to standalone.
When the stand alone profile is active CAS search extra configurations in /etc/cas/config in particular the file standalone.properties.
When the production profile is active CAS doen not search more configuration files, except if the spring cloud is configurated.
Are you running 5.2.4 or 5.3.4? Given there is no such thing as 5.3.4, you may want to correct the question.
Also note that tomcat 9 is officially not supported.
Properties by default go to c:\etc\cas\config on Windows, which is the same path as /etc/cas/config on Linux. The initial "/" on windows is translated to be the root drive, which for you might be "c:".
I'm facing an odd problem with Trac's authentication. I have it installed in other servers and never had problem to install it, but now I'm trying to install it on a shared linux server where:
don't have access to httpd.conf;
only available scripts are php and python (wsgi);
no dev tools at all (so no chance to use gcc to compile something);
.htaccess is okay.
Well, trac is installed and working in anonymous mode and I can not find a way to make it private. It looks like it only relies on Apache basic authentication but I can not do this without httpd.conf access.
On my other instalations I use <Location> inside httpd.conf, but I can't use this tag inside .htaccess. I know that I can simply put <Location>'s content inside a .htaccess file and put this file in any www subdirectory to protect it. But since this is a wsgi script in another directory outside www I have no place to put that .htaccess.
I'm looking for a way to solve this by:
still using apache auth with any other .htaccess configuration that I've missed;
any other way Trac could be used in privative besides relying on apache;
any other issue/project tracking similar to trac is an option too.
I'm using AccountManagerPlugin on a shared Linux server machine of mine without issues.
I was able to install the default cartridges bundled in Origin,,
What if I need to add some application like ex: httpd server, ldap server, tomcat etc..
Is there a way to do it, I saw the DIY and customer cartridge install, is there any pointers on how to use those?
Regards
G
I am not sure your question is 100% clear. If you are trying to install downloadable cartridges, you should be able to use the same syntax that you use for online, something like:
rhc app create jekyll https://raw.github.com/openshift-cartridges/openshift-jekyll-cartridge/master/metadata/manifest.yml
If that is not what you are asking, can you be more specific about what you are trying to do, and what you have tried already and what errors it gave?
I installed Apache HTTP Server on our Windows system, to work on a home project; it's for use by "localhost" only. When I installed it, the two options were to install it as a service, for all users, using port 80; or to install it for just the current user, run manually, using port 8080. I selected the second. However, while I'd prefer for it to use port 8080 and be run manually, I'd like it to be set up so that my wife can run it as her user. (Allowing all users would be OK.) I don't see an httpd.conf entry for this. Is there a way to do this either through httpd.conf or a command-line option? I'm guessing I could do this in the registry but I don't want to mess with it if I don't have to. (P.S. There's no need to have multiple instances run simultaneously.)
There's nothing you can do from within httpd.conf; any settings in there affects the server itself and not how it is accessed by a program
Well, you have a few options:
1. Uninstall the software and re-install it choosing the all users option. That would be your best choice.
2. Found the location of the folder where it was installed (or where apache.exe is located as that is the needed file to run) and see if you can create a shortcut link into it from within your wife's account. Apache server doesn't care who runs it as long as that file can be executed. The problem you might face is Windows OS preventing you from running it, especially if it requires administrative rights.
3. Install a software such as WAMPServer for her. Of course, that means two similar software on the same machine.
If I have to do it, I would go the first route. Every other option is gonna be a little complicated to work with.
Hope the explanation is clear and the answer helps.
So I have managed it. I can clone mercurial-repositories remotely using HTTP to my Windows Server 2003 machine and the ipaddress from that machine. Although I did deactivate IIS6 and am using Apache 2.2.x now. But not all works right now...darn! Here's the thing:
Cloning goes smooth! But when I want to push my changes to the original repository I get the message "cannot lock static http-repository". On the internet I get to read several explanations that Mercurial wasn't designed to push over HTTP connections. Still, on the Mercurial website there's something about configuring an hgrc file.
There's also the possibilty to configure Apache to host via HTTPS (or SSL). For this you have to load the module enabling OpenSSL and generating keys.
Configuring the hgrc file
Just add "push_ssl = false" under the [web] line. But where to put this file when pushing your changes back?! Because I placed it in the root of the server, in the ".hg" directory, nothing works.
Using SSL/HTTPS with Apache
When I try to access 'https://myipaddress' it fails, displaying a dutch message which would mean something like "server taking too long to respond". Trying to push also gives me a dutch error message which means about the same. It can not connect to my server via https although I followed the steps exactly at this blog.
I don't care which of the above solutions will work for me. Turns out none of them work so far. So please, can anyone help me with one of the solutions above? Pick the easiest! Help will be greatly appreciated, not only from me.
Summary
-Windows Server 2003
-Apache 2.2 with OpenSSL
-Mercurial 1.8.2
-I can clone, but not push!
Thank you!
Maarten Baar(s)
It seems like you might have apache configured incorrectly for getting it to do what you want. Based on your question it sounds like you have a path (maybe the root of the server) pointing to the repository you want to serve.
Mercurial comes with a script for this exact purpose, in the latest version it is hgweb.cgi. There are reasonably good instructions for setting it up on the mercurial site. It should allow both cloning and pushing. You will need the push_ssl=false if you will not be configuring https and also an allow_push line which will let certain users, or all (*) push to the repository. But all that should be part of the setup docs.