Guys Forgive me ,This post may be asked several times..but no proper answer.
Spec : All Clients are Browser based (IE-8,FFox12+) Only on Win Env
AAA : Active Directory on Windows Env
Web : Apache 2.22 on Linux Server
App : Tomcat Web container with proxyed thru "Httpd.conf" from Apache 2.22 on Linux server
Purpose : How to achieve this Configuration for the given spec "Authenticate via Active Directory using SSO"
and the pass the username on to the Web Container…..
I absolutely do not have any idea on How to achieve this factors …
I am able to get the popup realm for the code below
LoadModule proxy_module modules/mod_proxy.so
LoadModule proxy_http_module modules/mod_proxy_http.so
LoadModule headers_module modules/mod_headers.so
LoadModule rewrite_module modules/mod_rewrite.so
<IfModule!mod_auth_sspi.c>
LoadModule sspi_auth_module modules/mod_auth_sspi.so
</IfModule><location/>
AllowOverride None
Options None
Order allow,deny
Allow from all
AuthType SSPI
SSPIAuth On
SSPIAuthoritative off
SSPIOfferBasic Off
SSPIBasicPreferred Off
SSPIDomain agilis.com
SSPIOmitDomain off
require valid-user
RequestHeader set NS_ACCOUNTUNAME %{username}e
</location>
ProxyPass /LDAP_1 http://192.168.4.32:8085/LDAP_1
ProxyPassReverse /LDAP_1 http://192.168.4.32:8085/LDAP_1
I configured the IWA in IE / FFOX and was able to achieve the SSO,but Since i need to fwd the 'username' from the NTLM details , How does one fetch the 'Username" from the Encrypted format ????
With regards
KArthik
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hi
Guys Forgive me ,This post may be asked several times..but no proper answer.
Spec : All Clients are Browser based (IE-8,FFox12+) Only on Win Env
AAA : Active Directory on Windows Env
Web : Apache 2.22 on Linux Server
App : Tomcat Web container with proxyed thru "Httpd.conf" from Apache 2.22 on Linux server
Purpose : How to achieve this Configuration for the given spec "Authenticate via Active Directory using SSO"
and the pass the username on to the Web Container…..
I absolutely do not have any idea on How to achieve this factors …
I am able to get the popup realm for the code below
I am able to read headers as follows
FILTER 1 : : : : : : : : [
host : 192.168.4.32:8085
accept : text/html, application/xhtml+xml, */*
accept-language : en-US
user-agent : Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)
accept-encoding : gzip, deflate
authorization : NTLM TlRMTVNTUAADAAAAGAAYAIoAAABAAUABogAAAAwADABYAAAAEgASAGQAAAAUABQAdgAAAAAAAADiAQAABYKIogYBsB0AAAAP9oJIszBWfY0Y5GTti7NihUEARwBJAEwASQBTAG4AcwBrAGEAcgB0AGgAaQBr
AEEASQAtAEkAVABMAC0AMQAwADcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAjIx8gaI3VvN6hdd/TpkEMgEBAAAAAAAARGmNMDcezgFk0NnpFyQlYQAAAAACAAwAQQBHAEkATABJAFMAAQAUAEEASQAtAEkAVABMAC0AMQAwADcABAAUAGE
AZwBpAGwAaQBzAC4AYwBvAG0AAwAqAEEASQAtAEkAVABMAC0AMQAwADcALgBhAGcAaQBsAGkAcwAuAGMAbwBtAAUAFABhAGcAaQBsAGkAcwAuAGMAbwBtAAcACABEaY0wNx7OAQYABAACAAAACAAwADAAAAAAAAAAAQAAAAAQAABs7u71Ve
wO+nk4/dOPGHsG+RxthW7GAeC7WAodZetruwoAEAAAAAAAAAAAAAAAAAAAAAAACQAiAEgAVABUAFAALwAxADkAMgAuADEANgA4AC4AOAAuADcANwAAAAAAAAAAAAAAAAA=
twc_ns_accountuname : (null)
twc_ns_accountpassd : (null)
x-forwarded-for : 192.168.8.77
x-forwarded-host : 192.168.8.77
x-forwarded-server : AI-ITL-107.xxx.com
connection : Keep-Alive
]
with regards
karthik
Hi
I configured the IWA in IE / FFOX and was able to achieve the SSO,but Since i need to fwd the 'username' from the NTLM details , How does one fetch the 'Username" from the Encrypted format ????
With regards
KArthik