[users@httpd] Apache 2.2 with mod_ntlm not working

Wed, 02 Feb 2011 23:59:27 -0800 

Hi,
I'm attempting to get mod_ntlm2 working (I've not previously used it). On a FreeBSD 8.1 server I have installed apache 2.2 and mod_ntlm and added a section to the httpd.conf like: 

   <Location />
     AuthName "NTLM Auth"
     AuthType NTLM
     NTLMAuth on
     NTLMAuthoritative on
     NTLMDomain domain
     NTLMServer pdc
     NTLMBackup bdc
     require valid-user
    </Location>


With my domain and pdc and bdc hostnames substituted. I have a couple  
of windows accounts I am testig with, I have tested using windows  
commands (net use) that these usernames and passwords are valid.  
However when I attempted to authenticate via a browser it always  
denies me access, and after a few tries it locks out the windows  
accounts. The error I am seeing in the apache logs is:



[Wed Feb 02 17:36:53 2011] [notice] [client x.x.x.x] send  
WWW-Authenticate "NTLM TlRMTVNTUAACAAAAGAAYADAAAAAHggEAumj
c+uE2yscAAAAAAAAAAAAAAABIAAAAdgBvAGsAZQBzAGEAaQByAC4AYwBvAG0A",  
referer: http://x.x.x.x/
[Wed Feb 02 17:36:53 2011] [notice] [client x.x.x.x] got auth_line  
"TlRMTVNTUAADAAAAGAAYAIIAAABQAFAAmgAAABAAEA

BYAAAADgAOAGgAAAAMAAwAdgAAAAAAAADqAA
AABYIAAgYBsB0AAAAPG0il5C/9srkfmPPMxZsuk3YAbwBrAGUAcwBhAGkAcgBSAFQAQQBkAG0AaQBuA
FAAQQBWAEQAVgA2AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN4MKU+bIaQMe7eLipcJ3PkBAQAAAAAA

ABmNq8j/wssBw09SFnwgKuoAAAAAAgAYAHYAbwBrAGUAcwBhAGkAcgAuAGMAbwBtAAAAAAAAAAAA",  
referer: http://10.120.221.207/
[Wed Feb 02 17:36:53 2011] [notice] [client x.x.x.x] got header with  
host "workstation", domain "domain", referer: http://x.x.x.x/
[Wed Feb 02 17:36:53 2011] [error] [client x.x.x.x] received msg3  
92545680 63783, referer: http://x.x.x.x/
[Wed Feb 02 17:36:53 2011] [error] [client 10.x.x.x] authenticating  
user against DC 92545680 63783, referer: http://10.120.221.207/
[Wed Feb 02 17:36:53 2011] [error] [client x.x.x.x] NTLM/SMB user  
"myuser": authentication failure for "/", referer: http://x.x.x.x/



Having had a google I couldn't find any similar issues, does anyone  
have any ideas? Am I missing something obvious/basic? Or is there some  
other debugging I can do?


thanks in advance! Andy.




---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
  "   from the digest: users-digest-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org























					Reply via email to