Windows NTLM SSO

All about webserver configurations, PHP and databases.

Moderator: Thorsten

Post Reply
PaoloKappa
Posts: 11
Joined: Wed Sep 17, 2014 5:35 pm
Location: Stabio, Switzerland, Europe
Contact:

Windows NTLM SSO

Post by PaoloKappa » Tue Mar 23, 2021 3:19 pm

Hi Thorsten,

we have updated to the latest version and would like to enable SSO.
The section for LDAP is already properly configured and working.
However, in the configuration, under Security, the Single Sign on Support flag is disabled and we can't figure out how to implement it.
Our server is Ubuntu 20.04.2 LTS with Apache/2.4.46 and PHP 7.4.3.
Could you give us a hand to integrate the SSO with the Windows domain?

Thanks a bunch!

Cheers,

Paolo Caparrelli
GOLINE SA
IT Services

Thorsten
Posts: 15171
Joined: Tue Sep 25, 2001 11:14 am
Location: #phpmyfaq
Contact:

Re: Windows NTLM SSO

Post by Thorsten » Wed Mar 24, 2021 7:59 am

Hi Paolo,

we're checking on the value

Code: Select all

$_SERVER['REMOTE_USER']
with the value of logged in user via SSO from the Apache server. Is this not correct?

bye
Thorsten
phpMyFAQ Maintainer and Lead Developer
amazon.de Wishlist

gianni
Posts: 1
Joined: Thu Mar 25, 2021 2:44 pm

Re: Windows NTLM SSO

Post by gianni » Thu Mar 25, 2021 3:32 pm

Hi Thorsten,

I continue the thread of Paolo.
Could you please be more extensive? Where we must check the variable $_SERVER['REMOTE_USER']?
What MOD need to be installed and enabled in Apache to make PHPMyFaq working with LDAP+SSO?
Does exist a manual or a FAQ in which is explained step by step how to configure and enable the LDAP+SSO authentication with Microsoft Active Directory?

Thank you
Regards

Thorsten
Posts: 15171
Joined: Tue Sep 25, 2001 11:14 am
Location: #phpmyfaq
Contact:

Re: Windows NTLM SSO

Post by Thorsten » Sat Mar 27, 2021 11:22 am

Hi,

as far as I know if you're logging in to a SSO environment, the Apache server stores the logged in user in a server variable, the mentioned

Code: Select all

$_SERVER['REMOTE_USER']
.

Do you see this variable?

Sadly there's no step by step manual for LDAP and SSO, maybe we can create one?

bye
Thorsten
phpMyFAQ Maintainer and Lead Developer
amazon.de Wishlist

Post Reply