Tags:
create new tag
view all tags

Question

Hey All

I have a problem.

I installed mod_ntlm-1.3 to allow me to have transparent login for my twiki.

It works for people editing pages as it comes up INTRANET/

However if I try to go to /bin/configure it asks me for a username and password. I enter them but they are not recognised. frown

I have somehow locked myself out of the configure page.

Any ideas how I can make the username and password work for the configure page.

Environment

TWiki version: unspecified
TWiki plugins: DefaultPlugin, EmptyPlugin, InterwikiPlugin
Server OS:  
Web server: 1.3.3
Perl version: 5.8.8
Client OS: Windows XP Pro SP2
Web Browser:  
Categories: Htaccess, Permissions, Authentication, Authorisation

-- AndrewIrwin - 08 Aug 2007

Answer

ALERT! If you answer a question - or someone answered one of your questions - please remember to edit the page and set the status to answered. The status selector is below the edit box.

Andrew, you may have enabled only the localhost URL to view configure. Check your httpd.conf in /etc/apache2 --> it might not like the URL that you are giving it and it expects localhost/twiki/bin/configure or yourserverip/twiki/bin/configure. If the localhost works you should edit your httpd.conf so you can grant your desktop you often use access to httpd.conf. Hope that helps!

-- BrianMahoney - 08 Aug 2007

Thanks - but I will be running this from a LAN. The ServerName localhost still did not solve the problem. I can edit wiki pages fine and my username appears to say I edited the page. But just when I come to access bin/configure it asks me for the username and password. I enter these but it does not authenticate.

-- AndrewIrwin - 09 Aug 2007

Double check your httpd.conf, and maybe your access logs, and create a topic in your Sandbox which contains the variable %USERNAME%.

I can only guess without a peek at these files, but probably you've set up your server with something like that: 

<Directory /my/twiki/bin>
    Require valid-user
    <File /my/twiki/bin/configure>
        Require AndrewIrwin
    </File>
</Directory>
This would be a quite reasonable setup: Every authenticated user may access TWiki by Apache rules setup because fine grained access control is done with TWiki's own access control. For bin/configure, where TWiki's access control does not work, you've defined an explicit list of users in Apache.

The problem with Apache modules like mod_ntlm is that you need to specify the allowed users exactly as the authentication module delivers them: If the module delivers MYDOMAIN\AIrwin then this is the syntax you need to enter after the Require directive. If your user name contains spaces, you might need to enclose it in quotes: Require "MYDOMAIN\Andrew Irwin".

In your access log you can see how the login name you enter at the prompt is passed to by Apache. Compare that to a log file entry where you view or edit a topic while logged in transparently.

-- HaraldJoerg - 09 Aug 2007

Closing, seems to be answered...

-- PeterThoeny - 02 Oct 2007

Change status to:
WebForm
SupportStatus AnsweredQuestions
Edit | Attach | Watch | Print version | History: r5 < r4 < r3 < r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r5 - 2007-10-02 - PeterThoeny
 
  • Learn about TWiki  
  • Download TWiki
This site is powered by the TWiki collaboration platform Powered by Perl Hosted by OICcam.com Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.
Copyright © 1999-2026 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.