Scott - Yes, the ntlmdebug is set to 1. I feel a little stupid here, but I was looking for the error logs on the wrong machine. My test server is, in fact, showing connection failure errors in the apache error.log.<br><br>
Chris - You mentioned Kerberos authentication. Correct me if I'm wrong, but from what you described, it looks like you would have to export that keytab file every time a user changes. The goal I'm trying to reach here is if a user is terminated on the PDC, that user would immediatly lose access to the directory in question on the web server. I don't want a process to export a file. Maybe that's not what you are suggesting, and if not, please correct me. <br>
<br>Now that I figured out why I wasn't seeing error log entires :) I am continuing to trouble shoot. <br><br clear="all">Tim Champion<br><a href="mailto:timchampion@gmail.com">timchampion@gmail.com</a><br>
<br><br><div class="gmail_quote">On Thu, Dec 2, 2010 at 12:17 PM, Scott Prader <span dir="ltr"><<a href="mailto:sprader@iastate.edu">sprader@iastate.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
Hi Tim,<div><br></div><div>Did you try setting the<span style="color: rgb(51, 51, 51); font-family: 'Ubuntu Beta','Bitstream Vera Sans','DejaVu Sans',Tahoma,sans-serif; font-size: 12px; line-height: 16px; white-space: pre-wrap;"> 'PerlSetVar ntlmdebug'<b> </b>variable? Even if it's only logging binary data, it might be possible to match it up with what's going on with the apache-side of things. </span><span style="color: rgb(51, 51, 51); font-family: 'Ubuntu Beta','Bitstream Vera Sans','DejaVu Sans',Tahoma,sans-serif; font-size: 12px; line-height: 16px; white-space: pre-wrap;"> If anything comes across, tcpdump is likely to catch it whether or not the log does.</span></div>
<div><span style="color: rgb(51, 51, 51); font-family: 'Ubuntu Beta','Bitstream Vera Sans','DejaVu Sans',Tahoma,sans-serif; font-size: 12px; line-height: 16px; white-space: pre-wrap;"><br>
</span></div><div><span style="color: rgb(51, 51, 51); font-family: 'Ubuntu Beta','Bitstream Vera Sans','DejaVu Sans',Tahoma,sans-serif; font-size: 12px; line-height: 16px; white-space: pre-wrap;">-Scott</span></div>
<div><br><div class="gmail_quote"><div><div></div><div class="h5">On Thu, Dec 2, 2010 at 11:49 AM, Tim Champion <span dir="ltr"><<a href="mailto:timchampion@gmail.com" target="_blank">timchampion@gmail.com</a>></span> wrote:<br>
</div></div><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;"><div><div></div><div class="h5">I've been banging my head against a wall for a day or so here.<br>
<br>I have an Ubuntu web server running apache2. What I want to do is have a certain directory path (this path is browse-able, anybody is currently able to view and download raw files) and I want a specific directory protected with http authentication, and for that authentication to be against the Windows PDC (in the same network). <br>
<br>I've found this:<br><a href="http://manpages.ubuntu.com/manpages/maverick/man3/Apache2::AuthenNTLM.3pm.html" target="_blank">http://manpages.ubuntu.com/manpages/maverick/man3/Apache2::AuthenNTLM.3pm.html</a><br>which tells me to use NTLM authentication, there's not enough information here to get things working. <br>
<br>What I have now is a <Location> section in apache2.conf that looks similar to what is in the above link. I am, of course, plugging in all my network specific stuff (pdc, domain name, etc) I'm not really seeing anything in error logs, I just get a Internal Server error on Firefox/Ubuntu, and a "Forbidden" page on IE/Windows when I try and browse to the path.<br>
<br>so, I guess I'm asking if anybody had done this sort of thing before, and if so, can you point me in the right direction here? I just don't have any feeling for how to troubleshoot this. No logs I can find are updating on failure.<br>
<font color="#888888">
<br clear="all">Tim Champion<br><a href="mailto:timchampion@gmail.com" target="_blank">timchampion@gmail.com</a><br>
</font><br></div></div>_______________________________________________<br>
Cialug mailing list<br>
<a href="mailto:Cialug@cialug.org" target="_blank">Cialug@cialug.org</a><br>
<a href="http://cialug.org/mailman/listinfo/cialug" target="_blank">http://cialug.org/mailman/listinfo/cialug</a><br>
<br></blockquote></div><br><br clear="all"><br>-- <br>Scott Prader<br>Undergraduate Electrical Engineer<br>CARC, SSCL<br><a href="mailto:sprader@iastate.edu" target="_blank">sprader@iastate.edu</a><br><br>
</div>
<br>_______________________________________________<br>
Cialug mailing list<br>
<a href="mailto:Cialug@cialug.org">Cialug@cialug.org</a><br>
<a href="http://cialug.org/mailman/listinfo/cialug" target="_blank">http://cialug.org/mailman/listinfo/cialug</a><br>
<br></blockquote></div><br>