aboutsummaryrefslogtreecommitdiffstats
path: root/main/apache-mod-auth-kerb/mod-auth-kerb.conf
diff options
context:
space:
mode:
Diffstat (limited to 'main/apache-mod-auth-kerb/mod-auth-kerb.conf')
-rw-r--r--main/apache-mod-auth-kerb/mod-auth-kerb.conf26
1 files changed, 26 insertions, 0 deletions
diff --git a/main/apache-mod-auth-kerb/mod-auth-kerb.conf b/main/apache-mod-auth-kerb/mod-auth-kerb.conf
new file mode 100644
index 0000000000..24310d6cf9
--- /dev/null
+++ b/main/apache-mod-auth-kerb/mod-auth-kerb.conf
@@ -0,0 +1,26 @@
+#
+# The mod_auth_kerb module implements Kerberos authentication over
+# HTTP, following the "Negotiate" protocol.
+#
+
+LoadModule auth_kerb_module modules/mod_auth_kerb.so
+
+#
+# Sample configuration: Kerberos authentication must only be
+# used over SSL to prevent replay attacks. The keytab file
+# configured must be readable only by the "apache" user, and
+# must contain service keys for "HTTP/www.example.com", where
+# "www.example.com" is the FQDN of this server.
+#
+
+#<Location /private>
+# SSLRequireSSL
+# AuthType Kerberos
+# AuthName "Kerberos Login"
+# KrbMethodNegotiate On
+# KrbMethodK5Passwd Off
+# KrbAuthRealms EXAMPLE.COM
+# Krb5KeyTab /etc/httpd/conf/keytab
+# require valid-user
+#</Location>
+