12 April,16 at 11:09 AM
Applies to: Centrify Apache HTTP SSO Module 2.4 with Unix / Linux systems using PAM authentication
Problem:
Unable to access Sample pages using Apache http SSO module with the following directives in httpd.conf file
AuthType CENTRIFYDC
EnableBasicAuth true
AuthName aduser
EnableNtlmAuth false
EnableKerberosAuth false
require valid-user
Cause:
The require valid-user is not correct for Apache 2.4. Centrify changed the require directive in Apache 2.4 because Apache has changed their the Authentication/Authorization architecture. It is necessary to ensure that Centrify is the other module to do both.
Resolution:
Change require valid-user to Require centrify-dc-valid-user
For example:
AuthType CENTRIFYDC
EnableBasicAuth true
AuthName aduser
EnableNtlmAuth false
EnableKerberosAuth false
Require centrify-dc-valid-user
Note: Use the UPN to specify the userID. To specify multiple names separate each name with a space. For example (using the Apache 2.4 form):
Require centrify-dc-user ray@zen.com star@zen.com