Hi Paulvh
I've tried setting up the NTLM auth.
but can't get it to corporate.
1.
I'm presented with the Basic auth screen when opening SiT! with IE9, entering correct username and password redirects me to sit/index.php?id=3 (invalid username/password)
using the same credentials again on the login screen of SiT! I get my access.
so I can see LDAP and NTLM auth both work, but somehow the auth going through from the ntlm to sit doesn't seem to work properly.
After the NTLM auth with the std IE9 username/password block, logging in as a user, and get he username/password error, I cannot login to SiT! as admin, (first NTLM auth as user and then SiT auth as admin) won't log me on.
I've used the 2 last attachments you posted, (with the ntlm.php as the last one copied).
2.
I've tried changing the allowed IP addresses from one subnet to another. lets call them 192.168.0.0/24 and 192.168.1.0/24 and the server is 192.168.0.10, and client is 192.168.0.100
allowing 192.168.0.0/24 gives the username/password error mentioned above.
allowing 192.168.1.0/24 doesn't open up for NTLM auth, thus working as NTLM isn't installed.
I looked in the code and it should give an error message when doing this.
in the apache webserver I used the <Files ntlm.php> as you described, but I'm not using
- Code: Select all
<Directory />
Options FollowSymLinks Multiviews Indexes
AllowOverride All
AuthName "Authentication"
NTLMAuth on
NTLMAuthHelper "/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp"
NTLMBasicAuthoritative on
AuthType NTLM
require valid-user
</Directory>
as described in the guide that you linked.
though Im running on FreeBSD, I don't think thats an issue.
and unfortunately I don't see anything useful in the logs.
I'll see if I can add some debugging functions to the ntlm.php file to see whats going on.
I'll post again shortly