Thanks for your advice Gerald. I have found a compromise buy having the directive of Authtype Basic but the perl code has been changed to run the NTLM check as well as SMB (regardlesss of the config file) and if both authentications fail, the standard mod_auth code will then be run.
Thanks once again. Adam -----Original Message----- From: Gerald Richter [mailto:[EMAIL PROTECTED]] Sent: Friday, 16 August 2002 3:19 PM To: Kaye-Smith Adam; Peter Bi; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: NTLM module >when i have Authtype ntlm,basic in httpd.conf and I attempt to use a >username/password that is in htpasswd file I will not be able to be >authenticated & I receive the following error message in >/var/log/http/error.log > >[Thu Aug 15 15:28:53 2002] [crit] [client 131.242.91.200] configuration >error: couldn't check user. No user file?: / > >However when I use Authtype basic in httpd.conf & follow same process I >do not get the above error message in log & I can get authenticated & >bring up the web page. That's because Apache's basic auth handler checks for "AuthType Basic". If AuthType is anythingelse then basic, it doesn't do anything. This could be fixed for basic authentication by letting Apache::AuthenNTLM use another configuration directive instead of AuthType, so you can set AuthType to Basic, but it won't not work for NTLM authentication, because of what I wrote in my previous mails, that there is no password available on the server side to compare against. If it doesn't work with NTLM auth, there is no need to fix it, because you are using Apache::AuthNTLM to get NTLM authentication. If you really only want basic auth and verify your passwords against different backends, like a windows server, you really should use Peters module. If you want NTLM auth and what not only to verify the passwords against a windows server, you have to extent APache::AutheNTLM to handle this, like I wrote in my previous emails. Gerald ------------------------------------------------------------- Gerald Richter ecos electronic communication services gmbh Internetconnect * Webserver/-design/-datenbanken * Consulting Post: Tulpenstrasse 5 D-55276 Dienheim b. Mainz E-Mail: [EMAIL PROTECTED] Voice: +49 6133 925131 WWW: http://www.ecos.de Fax: +49 6133 925152 ------------------------------------------------------------- ************************************************************************ The information in this e-mail together with any attachments is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any form of review, disclosure, modification, distribution and/or publication of this e-mail message is prohibited. If you have received this message in error, you are asked to inform the sender as quickly as possible and delete this message and any copies of this message from your computer and/or your computer system network. ************************************************************************
