diff options
| author | Remi Collet <fedora@famillecollet.com> | 2012-06-13 18:43:31 +0200 |
|---|---|---|
| committer | Remi Collet <fedora@famillecollet.com> | 2012-06-13 18:43:31 +0200 |
| commit | 6a0492dd00a3ca23503e3aeafdb686c937adecb9 (patch) | |
| tree | 716c90a275d377b387f6fe24832a3e99153ad792 /auth_kerb.conf | |
reorg repo
Diffstat (limited to 'auth_kerb.conf')
| -rw-r--r-- | auth_kerb.conf | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/auth_kerb.conf b/auth_kerb.conf new file mode 100644 index 0000000..b593270 --- /dev/null +++ b/auth_kerb.conf @@ -0,0 +1,25 @@ +# +# The mod_auth_kerb module implements Kerberos authentication over +# HTTP, following the "Negotiate" protocol. +# + +LoadModule auth_kerb_module modules/mod_auth_kerb.so + +# +# Sample configuration: Kerberos authentication must only be +# used over SSL to prevent replay attacks. The keytab file +# configured must be readable only by the "apache" user, and +# must contain service keys for "HTTP/www.example.com", where +# "www.example.com" is the FQDN of this server. +# + +#<Location /private> +# SSLRequireSSL +# AuthType Kerberos +# AuthName "Kerberos Login" +# KrbMethodNegotiate On +# KrbMethodK5Passwd Off +# KrbAuthRealms EXAMPLE.COM +# Krb5KeyTab /etc/httpd/conf/keytab +# require valid-user +#</Location> |