TWiki considers me a guest even though I'm logged into the corporate LAN. I've considered the various options in TWikiDocumentation.

If I enable basic authentication as described in TWikiDocumentation won't browser prompt me for a username and password? But this is redundant given I'm already authenticated in the corporate lan. Documentation seems to imply REMOTE_USER works only if I have static IP or enable secure sockets, which I could do, but not being a guru, wonder if there is a downside to enabling SSL for my lone Linux server in a sea of Microsft.

How can I setup twiki so it associates my LAN login name (e.g. awostenb) with my twiki name (AlanWostenberg) ?

• TWiki version: Current
• Web server: Apache
• Server OS: Linux

-- AlanWostenberg - 25 Jan 2001

Answer

What you are trying to do is to get Apache on Linix to know of the LAN login, presumably Windows. This is beyond my knowledge. Anybody knows?

All TWiki needs is the REMOTE_USER environment variable set to your LAN login name, i.e. awostenb. TWiki translates that name to your WikiName based on the entries in the TWikiUsers topic. TWikiUsernameVsLoginUsername has more.

You only need static IP addresses if you want to track the user with a non authenticated view script and an authenticated edit script. This does not apply in your case, since you are trying to get the REMOTE_USER from the LAN login.

-- PeterThoeny - 26 Jan 2001

For what I know, you should look into PAM for apache. http://pam.sourceforge.net/mod_auth_pam/ Baseically, this should allow Apache to use the PAM settings of your Unix box. PAM is supposed to be able authenticate your login on NT domain controllers or LDAP servers.

• There is a PAM enabled sub-program with Samba called winbind which can authenticate users against an NT domain. See TransparentAuthentication for some work-in-progress notes on using this. -- MattWilkie - 28 Aug 2002

-- PeterKlausner - 29 Mar 2001

http://apache.dev.wapme.net/packages/ references a module called mod_auth_ntsec which sounds intriguing. Unfortunately I haven't been able to find anything substantial about it (yet).

I've communicated with the author and he says mod_auth_ntsec should be able to do exactly what we are talking about. Unfortunately he could not spare time to tell me how to use it, thought he did pass on the source code (presumably to serve as documentation) . I've created a Codev topic, CygwinAuthentication to deal with it's implementation under TWiki. [ MattWilkie 07 Nov 2001 ]

-- MattWilkie - 26 Oct 2001

Related Questions:

• AuthenticationProblem
• AuthenticateWithSSL
• TransparentAuthentication
• ReplacingAuthenticationWithCustom