From 2110fabefdf18c73c055f5c7cfce974a8797f661 Mon Sep 17 00:00:00 2001 From: Francesco Colista Date: Mon, 3 Jan 2011 16:20:16 +0000 Subject: New aports: apache-mod-auth-kerb --- testing/apache-mod-auth-kerb/mod-auth-kerb.conf | 26 +++++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 testing/apache-mod-auth-kerb/mod-auth-kerb.conf (limited to 'testing/apache-mod-auth-kerb/mod-auth-kerb.conf') diff --git a/testing/apache-mod-auth-kerb/mod-auth-kerb.conf b/testing/apache-mod-auth-kerb/mod-auth-kerb.conf new file mode 100644 index 0000000000..24310d6cf9 --- /dev/null +++ b/testing/apache-mod-auth-kerb/mod-auth-kerb.conf @@ -0,0 +1,26 @@ +# +# The mod_auth_kerb module implements Kerberos authentication over +# HTTP, following the "Negotiate" protocol. +# + +LoadModule auth_kerb_module modules/mod_auth_kerb.so + +# +# Sample configuration: Kerberos authentication must only be +# used over SSL to prevent replay attacks. The keytab file +# configured must be readable only by the "apache" user, and +# must contain service keys for "HTTP/www.example.com", where +# "www.example.com" is the FQDN of this server. +# + +# +# SSLRequireSSL +# AuthType Kerberos +# AuthName "Kerberos Login" +# KrbMethodNegotiate On +# KrbMethodK5Passwd Off +# KrbAuthRealms EXAMPLE.COM +# Krb5KeyTab /etc/httpd/conf/keytab +# require valid-user +# + -- cgit v1.2.3