[Date Prev][Date Next] [Chronological] [Thread] [Top]

Tired old NTLM question

To: ldap@umich.edu
Subject: Tired old NTLM question
From: Tod Thomas <tthomas@chubb.com>
Date: Thu, 11 Dec 2003 14:24:05 -0500
Cc: openldap-software@OpenLDAP.org
References: <LYRIS-1233221-516342-2003.12.09-14.33.55--tthomas#chubb.com@listserver.itd.umich.edu>

Is there a way I can, within a windows XP client environment, provide
*seemless* user authentication via LDAP?  I've looked at the Apache mod
auth_ldap which works fine, but one of the customer's requirements is
that under no circumstances should the user be required to authenticate
again once they've logged onto their workstation.

mod_ntlm has limitations, and is insufficient security wise.  I thought
of using a proxy solution like squid, but that just transfers the NTLM
challenge/response from the web server to the proxy.  I need a solution
that uses LDAP, preferably requiring minimal development time 
on my part.

Any ideas?

Thanks - Tod (Sorry for cross posting)

Follow-Ups:
- Re: Tired old NTLM question
  - From: Chris Schadl <cschadl@satan.org.uk>

Prev by Date: SASL-GSSAPI Binds on a refereal bug?
Next by Date: Re: SASL-GSSAPI Binds on a refereal bug?
Index(es):
- Chronological
- Thread