Skip to content
This repository has been archived by the owner on Aug 31, 2020. It is now read-only.

Kerberos

Pavel Studeník edited this page Jan 3, 2017 · 2 revisions

How to setup Kerberos authentication

Currently it is possible to set only for apache (httpd).

Steps: Add following rows to apache site configure file. For example /etc/httpd/conf.d/tttt.conf. And if you have valid Kerberos configuration, login should work.

<Location "/accounts/login">
     # Kerberos authentication:
     AuthType Kerberos
     AuthName "TTTT - Kerberos login"
     KrbMethodNegotiate on
     KrbMethodK5Passwd on
     KrbAuthoritative on
     KrbServiceName HTTP
     KrbAuthRealm EXAMPLE.COM
     KrbVerifyKDC on
     Krb5Keytab /etc/httpd/conf/httpd.keytab
     KrbSaveCredentials off
     Require valid-user
</Location>

In some case it needs to change uswgi configuration because small buffer size causes ISE500. Raise value 4373 to 4873.

    <buffer-size>4873</buffer-size>
Clone this wiki locally