On a Mac OSX server with Apache, is there any programming library, framework, etc. that I can get to allow Windows Integrated Authentication? I don't mean just LDAP because the user still has to logon the website before I can get the LOGON_USER. I am looking for something that gets the credentials of the Windows user from the browser (IE). I don't care if it uses LDAP, just as long as the user doesn't have to logon to the intranet website.
I have looked for this with J2EE, PHP, Ruby, and more. I have only found unsupported and inactive mods for Apache or pay for single sign on products, but nothing FOSS that is active.
I found Detect user logged on a computer using Java web app. Am I reading it right that that is what I am also asking for?
Apparently, jcifs is not supposed to be used for this.
Ive heard of Araas, but never used it myself though.
Don't know if thats helpful
mod_ntlm: http://sourceforge.net/projects/modntlm/ might be what you are after
You can try mod_auth_sspi, but It doesn't work on apache 2.4 for windows :(
Related
I am a novice so please help me a bit.
I am using Flex Builder 4.6 to make a desktop app, I want to make people login before they can access the app, I want them to login with the same user info they use on my wordpress site, The database is hosted via godaddy and i have all the phpmyadmin information. I have googled and googled but I am either not doing the right set of words or this isn't possible because I cant find any examples on how to do this.
right now its a blank app with a username and password text input along with a button to login.
I'm afraid that you can't do this directly and would need to leverage Java (or similar) such as using a server application.
I've never seen or heard of anyone doing this directly via AIR. I suppose it's theoretically possible, albeit not trivial.
Edit:
Thinking about it...this would probably be a kludgy/hacky solution, you could try leveraging Java directly from the users PC by packaging a Java "service utility" with your overall install process, which would interface with your AIR Flex app. They'd need to have Java installed, and additional firewall permissions could be a pain.
You'd need to use NativeProcess.
I've made my first website in ASP.NET MVC 4 for a customer, and he bought a host at 1eurohosting.net. On their website's FAQ it says
"Do you offer Windows based services?
We do not. We only offer Linux based services."
I've read that its still possible to run a MVC4 application on linux using mono, but how would I do this?
What I've tried so far is publish the website by right clicking solution explorer, and following the steps when u click "publish". The publishing works fine, and the files are on the webserver, but it doesn't run, because I think I need to use mono.
I don't know what to do at this point. What do I do next? If I have to use mono, how can I use it?
It seems that I either need a host that supports IIS or Mono. I dont think my current webhost supports Mono, I am still going to try and contact them, though.
I am trying to make a new website on an IIS server, of which has websites that are using Windows Authentication just fine. However, for the life of me, I cannot figure out why my new website refuses access (401.2)
Basically, I create a new website and add a single .html file ("Hello, World"). I can access it just fine. But turn off Anonymous, leaving on Windows Authentication, I get prompted for ID/PWD, ending always a 401.2
So, I decided to make a new website as a copy of the existing working website on the same webserver. I've even gone and made the new website share the same App Pool and the same Physical Path. This way, as far as I can tell, the only possible differences between the two websites is now the IIS configuration of the two sites. Still can't authenticate.
I've switched the bindings, doesn't help.
I've even compared the settings in applicationHost.config, making sure they're equal.
Any ideas? Thanks in advance.
I've used this article several times for problems like these with some success: http://blogs.msdn.com/b/david.wang/archive/2005/07/14/howto-diagnose-iis-401-access-denied.aspx Hope it helps!
I was advised to try running iisreset from the command line. This turns out to be what I needed all along. Seems some configuration changes do not get applied properly, even when restarting the particular website, until IIS itself is restarted.
I'm in the process of installing an open-source Python based web application to an internal server here at work. The existing code is open - it doesn't require a login to view it - but one of the requirements is that users have to be approved before they can see anything.
Is there a good way (using Apache configuration files for example, but any method would be great) to wrap the application so that any access requires a login? I would like to avoid modifying the open-source code (a maintenance nightmare every time a new release comes out).
Any thoughts or suggestions?
Apache supports Authentication, Authorization and Access Control.
It is a detailed process, and summarising it here would not do it justice. I refer you to the link provided,
I want to keep a log with the attempted log-in to a machine. The OS is Windows Embbeded Standard. Is it possible to make Windows execute an application or a script after every login attempt to enable me to save that information in my database?
EDIT:
Extract from Superuser:
"Here, you can set auditing to all types of events. I believe the one you want is "Audit logon events", Set it to Failure (or Success as well if you want).
All events will now get sent to Event Viewer. ..."
Is it possible to access the Event Viewer info via WMI?
From a security viewpoint, I would assume this would not be possible. But it is possible to write your specialized GINA library which would replace the standard login system of Windows. This was done to support fingerprint readers and smart card readers, and many other alternative login methods.
But out of curiosity, what kind of problem are you trying to solve here? Windows already has plenty of build-in functionality which can be analysed by anyone who can log in.
Follow this link to see how it's done in Windows 2003. I've checked with Windows XP on a virtual machine and it works exactly the same there. So I assume it also works in embedded XP versions.For reading the event log, this link from MSDN will be practical too. This will require .NET though, which is optional on Windows XP.
WMI might be a good place to start. You could use WMI (or another method) to query the security event log for sucessful/failed logon events, too.
http://www.computerperformance.co.uk/vbscript/wmi_event_log_administrator.htm