Is anybody using PHP along with standard kerberos authentication? We're wanting to use kerberos for some of our secure web authentication, but I'm not finding much documentation or support on actually implementing a kerberized web site.
Any suggestions or advice?
Have you heard anything yet. I am very interested in Kerberos Authentication for our system. If you hear anything, please let me know.
Thank you
Michael Galloway
mlg@catholic.org
Catholic Online
www.catholic.org
We were able to get Kerberos working with Apache using mod_auth_kerb. I've then been able to authenticate users using Apache's authentication and been able to get their Kerberos username and password from the Apache environmental variable REMOTE_USER and the PHP environmental variable PHP_AUTH_PW.
We've successfully implemented Kerberos for internal users. However, we haven't implemented any Kerberos authentication for our external customers. For the ease of administration, we've stuck to using a MySQL database for our external user accounts.
Hope this is helpful.
We're doing it the same way, putting PHP applications behind an .htaccess files and always requiring authentication, then reading their username from the Apache environment variable.