I would like to know the step by step configuration of OTRS 5 single sign-on access using AD users(AD is used window server and OTRS is in centos 7).
How can i access window server Kerberos keytabs and how to use keytab file.
I installed mod_auth_kerb module in centos 7 which is running OTRS 5.
My config in centos : /etc/krb5.conf
Code: Select all
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
allow_weak_crypto = true
default_tgs_enctypes = rc4-hmac
default_tkt_enctypes = rc4-hmac
default_realm = AD's Base DN
dns_lookup_realm = false
dns_lookup_kdc = false
ticket_lifetime = 24h
renew_lifetime = 7d
forwardable = true
[realms]
AD's Base DN = {
kdc = ip address of AD's Base DN
admin_server = ip address of AD's Base DN
}
[domain_realm]
.AD's Base DN = AD's Base DN
AD's Base DN = AD's Base DN Its reply -> Authenticated to Kerberos v5
My config in otrs for authentication authorization LDAP+single sign-on : /opt/otrs/Kernel/Config.pm
Code: Select all
$Self->{'AuthModule'} = 'Kernel::System::Auth::HTTPBasicAuth';
with regards,
zin
21st Sep 2016 10:33am
Yangon,Myanamar