You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Andrew Berkowitz <ba...@rocketmail.com> on 2002/09/20 16:20:12 UTC
[users@httpd] Best Authentication - Any suggestions
Hello,
I need to improve the authentication on a site. Currently, I use perl
to authenticate from a Sybase back-end.
We have RSA/ACE servers. I've tried using their rsawebagent. But it
doesn't allow groups the way I need them. People are either allowed or
denied to the entire site. RSA says that their module won't use defined
groups on the RSA/ACE servers for this purpose.
I want to allow different groups to get to their respective directories
directories.
I've tried setting up basic authentication in addition to the RSA,
hoping I could match the usernames in RSA to names in the groups I
define in a htgroups file. This file would be pretty static.
What is the most secure way to authenticate that still allows
group-based authentication?
I am using RH 7.3 with kernel 2.4.18, Perl 5.8, RSA/ACE 5.0, & Apache
1.3.26
If necessary, I'll switch to Apache 2.
Thank you for any suggestions.
-Andy
__________________________________________________
Do you Yahoo!?
New DSL Internet Access from SBC & Yahoo!
http://sbc.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
[users@httpd] Re: Best Authentication - Any suggestions - tacacs
Posted by Andrew Berkowitz <ba...@rocketmail.com>.
Has anyone used mod_auth_tacacs
Will it allow statements like:
<Directory A>
...
require valid-user
require group A
</Directory>
<Directory B>
...
require valid-user
require group B
</Directory>
-Again thank you.
--- Andrew Berkowitz <ba...@rocketmail.com> wrote:
> Hello,
>
> I need to improve the authentication on a site. Currently, I use perl
> to authenticate from a Sybase back-end.
>
> We have RSA/ACE servers. I've tried using their rsawebagent. But it
> doesn't allow groups the way I need them. People are either allowed
> or
> denied to the entire site. RSA says that their module won't use
> defined
> groups on the RSA/ACE servers for this purpose.
>
> I want to allow different groups to get to their respective
> directories
> directories.
>
> I've tried setting up basic authentication in addition to the RSA,
> hoping I could match the usernames in RSA to names in the groups I
> define in a htgroups file. This file would be pretty static.
>
> What is the most secure way to authenticate that still allows
> group-based authentication?
>
> I am using RH 7.3 with kernel 2.4.18, Perl 5.8, RSA/ACE 5.0, & Apache
> 1.3.26
>
> If necessary, I'll switch to Apache 2.
>
> Thank you for any suggestions.
>
> -Andy
>
>
>
> __________________________________________________
> Do you Yahoo!?
> New DSL Internet Access from SBC & Yahoo!
> http://sbc.yahoo.com
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server
> Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
__________________________________________________
Do you Yahoo!?
New DSL Internet Access from SBC & Yahoo!
http://sbc.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org