i have a similar configuration, i trust the yellopages to do the authentication. basically, there are two major ways for authentication: group and name.
you can demand that the user has a certain name (with the key word "require") , and you verify it by a passwd. you can demand that a user is in a certain group, and then you do not need to update the apache configuration file, just the group file. i did not manage to make the apache ask the yellopages for authentication, so i create, using a cron job, a static passwd file from the yp database. main disadvantages: the passwd file is not protected in /etc/shadow, and is created once a (day?). on the other hand, the script which extracts the passwd file from the database also runs under regular user privileges, so it actually begins with yp configuration problem. main advantages: if i do not create the passwd file from the yp, the other option is to enable users to add a new login name + passwd, the regular mechainism in the internet. but as i get it, you wish to verify more than the consistency of the users: you want to know they are the same as on your server. On Sun, 30 Jun 2002, Iftach Hyams wrote: > My users use Windowz NT / 2000 and login into a domain. > The smb.conf uses > security = server > password server = nt_server.ourdomain > and a username map, so actually I trust the nt server to authenticate them. > > Now, I would like Apache to do the same. Can it be done ? Is there a way to > utilize > this so the web page will be accessible only to picked users ? > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > "Doubt is not a pleasant condition, > but certainty is absurd." > [Voltaire] > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > Iftach Hyams > E.S.L. Haifa > 972 - 4 - 831 5605 > [EMAIL PROTECTED] > > > > > > > This e-mail message has been sent by Elbit Systems Ltd. and is for the use > of the intended recipients only. The message may contain information that > is privileged or confidential. If you are not the intended recipient you > are hereby notified that any use, distribution or copying of this > communication is strictly prohibited, and you are requested to delete the > e-mail and any attachments and notify the sender immediately. > > > ================================================================= > To unsubscribe, send mail to [EMAIL PROTECTED] with > the word "unsubscribe" in the message body, e.g., run the command > echo unsubscribe | mail [EMAIL PROTECTED] > > -- Orna. | http://tx.technion.ac.il/~agmon There are only 10 types of people in the world- Those who understand binary, and those who do not. ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
