MarkRound
04-10-2008, 08:31 AM
Hi,
Under Apache, you can specify that an authorisation realm should not be authoritative, so that if one realm doesn't authenticate it can try another.
This means you can (for instance) have a LDAP group protected area, but override it with local users from a password file if needed.
For example, your Apache config might look something like :
AuthBasicAuthoritative Off
AuthName "protected"
AuthType Basic
AuthBasicProvider ldap file
AuthUserFile /path/to/passwd.file
AuthzUserAuthoritative off
require valid-user
AuthLDAPURL ldap://...
AuthzLDAPAuthoritative off
require ldap-group cn=htaccess,ou=groups,dc=example,dc=com
Is it possible to use multiple authentication realms in LiteSpeed, or are there any plans to add them in future ?
Thanks,
-Mark
Under Apache, you can specify that an authorisation realm should not be authoritative, so that if one realm doesn't authenticate it can try another.
This means you can (for instance) have a LDAP group protected area, but override it with local users from a password file if needed.
For example, your Apache config might look something like :
AuthBasicAuthoritative Off
AuthName "protected"
AuthType Basic
AuthBasicProvider ldap file
AuthUserFile /path/to/passwd.file
AuthzUserAuthoritative off
require valid-user
AuthLDAPURL ldap://...
AuthzLDAPAuthoritative off
require ldap-group cn=htaccess,ou=groups,dc=example,dc=com
Is it possible to use multiple authentication realms in LiteSpeed, or are there any plans to add them in future ?
Thanks,
-Mark