Problems with Apache::AuthenNTLM on Apache 2
[prev] [thread] [next] [Date index for 2004/12/28]
From: Hess, Fraser
Subject: Problems with Apache::AuthenNTLM on Apache 2
Date: 20:05 on 28 Dec 2004
Subject: Problems with Apache::AuthenNTLM on Apache 2
Date: 20:05 on 28 Dec 2004
------_=_NextPart_001_01C4ED18.8AE55AB5 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Hi, I was hoping that you could help me. I running Apache 2.0.52/mod_perl 1.99.19/Apache::AuthenNTLM 2.08 on Fedora Core 3 and I'm running into a problem. In the browser both IE and Firefox NTLM pass-thru authentication seems to fail and I get prompted for my username and password, but the realm that I set in the AuthName is missing. It says 'Enter username and password for "" at http...' Anything I enter here still fails to authenicate, correct or not. However, if I press the Cancel button, I get prompted for my password again and this time the realm shows up in the dialog box in the quotes, I enter the correct username and password and up comes my web site. My config is as follows: <Location /> PerlAuthenHandler Apache::AuthenNTLM AuthType ntlm,basic AuthName test Require valid-user PerlAddVar ntdomain "cmg-corp co-dc1" PerlSetVar defaultdomain cmg-corp PerlSetVar ntlmdebug 1 </Location> =20 Here is the log. 9599 is the transaction when I first call the web page in the browser. 9600 is when I try on log on when the realm is blank. 9601 is from when I successfully authenicate, using basic it seems. =20 [Tue Dec 28 09:26:43 2004] [notice] Apache/2.0.52 (Unix) mod_ssl/2.0.52 OpenSSL/0.9.7a mod_perl/1.99_19 Perl/v5.8.5 configured -- resuming normal operations [9599] AuthenNTLM: Config Domain =3D cmg-corp pdc =3D co-dc1 bdc =3D [9599] AuthenNTLM: Config Default Domain =3D cmg-corp [9599] AuthenNTLM: Config Fallback Domain =3D [9599] AuthenNTLM: Config AuthType =3D ntlm,basic AuthName =3D test [9599] AuthenNTLM: Config Auth NTLM =3D 1 Auth Basic =3D 1 [9599] AuthenNTLM: Config NTLMAuthoritative =3D on BasicAuthoritative = =3D on [9599] AuthenNTLM: Config Semaphore key =3D 23754 timeout =3D 2 [9599] AuthenNTLM: Config SplitDomainPrefix =3D [9599] AuthenNTLM: Authorization Header <not given> [Tue Dec 28 09:26:54 2004] [error] Bad/Missing NTLM/Basic Authorization Header for / [9600] AuthenNTLM: Config Domain =3D cmg-corp pdc =3D co-dc1 bdc =3D [9600] AuthenNTLM: Config Default Domain =3D cmg-corp [9600] AuthenNTLM: Config Fallback Domain =3D [9600] AuthenNTLM: Config AuthType =3D ntlm,basic AuthName =3D test [9600] AuthenNTLM: Config Auth NTLM =3D 1 Auth Basic =3D 1 [9600] AuthenNTLM: Config NTLMAuthoritative =3D on BasicAuthoritative = =3D on [9600] AuthenNTLM: Config Semaphore key =3D 23754 timeout =3D 2 [9600] AuthenNTLM: Config SplitDomainPrefix =3D [9600] AuthenNTLM: Authorization Header NTLM [9600] AuthenNTLM: protocol=3DNTLMSSP, type=3D1, flags1=3D7(NEGOTIATE_UNICODE,NEGOTIATE_OEM,REQUEST_TARGET), flags2=3D130(NEGOTIATE_ALWAYS_SIGN,NEGOTIATE_NTLM), domain length=3D0, domain offset=3D0, host length=3D0, host offset=3D0, host=3D, domain=3D [9600] AuthenNTLM: Connect to pdc =3D co-dc1 bdc =3D domain =3D = cmg-corp [9600] AuthenNTLM: enter lock [9600] AuthenNTLM: verify handle [9600] AuthenNTLM: charencoding =3D 1 [9600] AuthenNTLM: flags2 =3D 130 [9600] AuthenNTLM: Send header: NTLM ... [9600] AuthenNTLM: Start NTLM Authen handler pid =3D 9600, connection = =3D 163322120 conn_http_hdr =3D keep-alive main =3D cuser =3D remote_ip = =3D 10.0.0.101 remote_port =3D remote_host =3D <> version =3D 2.08 [9600] AuthenNTLM: leave lock [9600] AuthenNTLM: Setup new object [9600] AuthenNTLM: Config Domain =3D cmg-corp pdc =3D co-dc1 bdc =3D [9600] AuthenNTLM: Config Default Domain =3D cmg-corp [9600] AuthenNTLM: Config Fallback Domain =3D [9600] AuthenNTLM: Config AuthType =3D ntlm,basic AuthName =3D test [9600] AuthenNTLM: Config Auth NTLM =3D 1 Auth Basic =3D 1 [9600] AuthenNTLM: Config NTLMAuthoritative =3D on BasicAuthoritative = =3D on [9600] AuthenNTLM: Config Semaphore key =3D 23754 timeout =3D 2 [9600] AuthenNTLM: Config SplitDomainPrefix =3D [9600] AuthenNTLM: Authorization Header NTLM [9600] AuthenNTLM: protocol=3DNTLMSSP, type=3D3, user=3Df^@h^@e^@s^@s <mailto:user=3Df^@h^@e^@s^@s> ^@, host=3Dc^@o^@-^@h^@r^@-^@w^@e^@b^@0^@2 <mailto:host=3Dc^@o^@-^@h^@r^@-^@w^@e^@b^@0^@2> ^@, domain=3D, msg_len=3D0[9600] handler type =3D=3D 3 [Tue Dec 28 09:27:38 2004] [error] SMB Server connection not open in state 3 for / [9601] AuthenNTLM: Config Domain =3D cmg-corp pdc =3D co-dc1 bdc =3D [9601] AuthenNTLM: Config Default Domain =3D cmg-corp [9601] AuthenNTLM: Config Fallback Domain =3D [9601] AuthenNTLM: Config AuthType =3D ntlm,basic AuthName =3D test [9601] AuthenNTLM: Config Auth NTLM =3D 1 Auth Basic =3D 1 [9601] AuthenNTLM: Config NTLMAuthoritative =3D on BasicAuthoritative = =3D on [9601] AuthenNTLM: Config Semaphore key =3D 23754 timeout =3D 2 [9601] AuthenNTLM: Config SplitDomainPrefix =3D [9601] AuthenNTLM: Authorization Header Basic [9601] AuthenNTLM: basic auth username =3D cmg-corp\fhess [9601] AuthenNTLM: Connect to pdc =3D co-dc1 bdc =3D domain =3D = cmg-corp [9601] AuthenNTLM: enter lock [9601] AuthenNTLM: verify handle fhess [9601] AuthenNTLM: Verify user fhess via smb server [9601] AuthenNTLM: leave lock [9601] AuthenNTLM: OK pid =3D 9601, connection =3D 163322120 cuser =3D cmg-corp\fhess ip =3D 10.0.0.101 [9601] AuthenNTLM: Start NTLM Authen handler pid =3D 9601, connection = =3D 163322120 conn_http_hdr =3D keep-alive main =3D Apache::RequestRec=3DSCALAR(0x9bbcb20) cuser =3D remote_ip =3D = 10.0.0.101 remote_port =3D remote_host =3D <> version =3D 2.08 [9601] AuthenNTLM: Setup new object [9601] AuthenNTLM: Config Domain =3D cmg-corp pdc =3D co-dc1 bdc =3D [9601] AuthenNTLM: Config Default Domain =3D cmg-corp [9601] AuthenNTLM: Config Fallback Domain =3D [9601] AuthenNTLM: Config AuthType =3D ntlm,basic AuthName =3D test [9601] AuthenNTLM: Config Auth NTLM =3D 1 Auth Basic =3D 1 [9601] AuthenNTLM: Config NTLMAuthoritative =3D on BasicAuthoritative = =3D on [9601] AuthenNTLM: Config Semaphore key =3D 23754 timeout =3D 2 [9601] AuthenNTLM: Config SplitDomainPrefix =3D [9601] AuthenNTLM: Authorization Header Basic [9601] AuthenNTLM: basic auth username =3D cmg-corp\fhess [9601] AuthenNTLM: Connect to pdc =3D co-dc1 bdc =3D domain =3D = cmg-corp [9601] AuthenNTLM: enter lock [9601] AuthenNTLM: verify handle fhess [9601] AuthenNTLM: Verify user fhess via smb server [9601] AuthenNTLM: leave lock [9601] AuthenNTLM: OK pid =3D 9601, connection =3D 163322120 cuser =3D cmg-corp\fhess ip =3D 10.0.0.101 [9601] AuthenNTLM: Start NTLM Authen handler pid =3D 9601, connection = =3D 163322120 conn_http_hdr =3D keep-alive main =3D Apache::RequestRec=3DSCALAR(0x9bbcb20) cuser =3D remote_ip =3D = 10.0.0.101 remote_port =3D remote_host =3D <> version =3D 2.08 =20 =20 Fraser Hess =20 ------_=_NextPart_001_01C4ED18.8AE55AB5 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD><TITLE>Message</TITLE> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Dus-ascii"> <META content=3D"MSHTML 6.00.2900.2523" name=3DGENERATOR></HEAD> <BODY> <DIV> <DIV><FONT size=3D2>Hi,<BR>I was hop<SPAN = class=3D110150020-28122004>ing</SPAN> that=20 you could help me. I running Apache 2.0.52/mod_perl=20 1.99.19/Apache::AuthenNTLM 2.08 on Fedora Core 3 and I'm running into a=20 problem. In the browser both IE and Firefox<SPAN = class=3D110150020-28122004>=20 NTLM pass-thru authentication seems to fail and </SPAN>I get = prompted for=20 my username and password, but the realm that I set in the AuthName is=20 missing. It says 'Enter username and password for "" at = http...' =20 Anything I enter here <SPAN class=3D110150020-28122004>still = </SPAN>fails to=20 authenicate, correct or not. However, if I press the Cancel = button, I get=20 prompted for my password again and this time the realm shows up in the = dialog=20 box in the quotes, I enter the correct username and password and up = comes my web=20 site.<BR></FONT></DIV> <DIV><SPAN class=3D815201716-28122004><FONT size=3D2>My config is as=20 follows:</FONT></SPAN></DIV> <DIV><SPAN class=3D815201716-28122004><FONT size=3D2><Location=20 /><BR>PerlAuthenHandler Apache::AuthenNTLM<BR>AuthType = ntlm,basic<BR>AuthName=20 test<BR>Require valid-user<BR>PerlAddVar ntdomain "cmg-corp=20 co-dc1"<BR>PerlSetVar defaultdomain cmg-corp<BR>PerlSetVar ntlmdebug=20 1<BR></Location></FONT></SPAN></DIV> <DIV><SPAN class=3D815201716-28122004><FONT = size=3D2></FONT></SPAN> </DIV> <DIV><SPAN class=3D815201716-28122004><SPAN = class=3D110150020-28122004><FONT=20 size=3D2>Here is the log. 9599 is the transaction when I first = call the web=20 page in the browser. 9600 is when I try on log on when the realm = is=20 blank. 9601 is from when I successfully authenicate, using basic = it=20 seems.</FONT></SPAN></SPAN></DIV> <DIV><SPAN class=3D815201716-28122004><SPAN = class=3D110150020-28122004><FONT=20 size=3D2></FONT></SPAN></SPAN> </DIV> <DIV><SPAN class=3D815201716-28122004><FONT size=3D2>[Tue Dec 28 = 09:26:43 2004]=20 [notice] Apache/2.0.52 (Unix) mod_ssl/2.0.52 OpenSSL/0.9.7a = mod_perl/1.99_19=20 Perl/v5.8.5 configured -- resuming normal operations<BR>[9599] = AuthenNTLM:=20 Config Domain =3D cmg-corp pdc =3D co-dc1 bdc =3D<BR>[9599] = AuthenNTLM:=20 Config Default Domain =3D cmg-corp<BR>[9599] AuthenNTLM: Config Fallback = Domain=20 =3D<BR>[9599] AuthenNTLM: Config AuthType =3D ntlm,basic AuthName =3D = test<BR>[9599]=20 AuthenNTLM: Config Auth NTLM =3D 1 Auth Basic =3D 1<BR>[9599] = AuthenNTLM: Config=20 NTLMAuthoritative =3D on BasicAuthoritative =3D on<BR>[9599] = AuthenNTLM:=20 Config Semaphore key =3D 23754 timeout =3D 2<BR>[9599] AuthenNTLM: = Config=20 SplitDomainPrefix =3D<BR>[9599] AuthenNTLM: Authorization Header <not = given><BR>[Tue Dec 28 09:26:54 2004] [error] Bad/Missing NTLM/Basic=20 Authorization Header for /<BR></FONT></SPAN></DIV> <DIV><SPAN class=3D815201716-28122004><FONT size=3D2>[9600] AuthenNTLM: = Config=20 Domain =3D cmg-corp pdc =3D co-dc1 bdc =3D<BR>[9600] = AuthenNTLM: Config=20 Default Domain =3D cmg-corp<BR>[9600] AuthenNTLM: Config Fallback Domain = =3D<BR>[9600] AuthenNTLM: Config AuthType =3D ntlm,basic AuthName =3D = test<BR>[9600]=20 AuthenNTLM: Config Auth NTLM =3D 1 Auth Basic =3D 1<BR>[9600] = AuthenNTLM: Config=20 NTLMAuthoritative =3D on BasicAuthoritative =3D on<BR>[9600] = AuthenNTLM:=20 Config Semaphore key =3D 23754 timeout =3D 2<BR>[9600] AuthenNTLM: = Config=20 SplitDomainPrefix =3D<BR>[9600] AuthenNTLM: Authorization Header = NTLM<BR>[9600]=20 AuthenNTLM: protocol=3DNTLMSSP, type=3D1,=20 flags1=3D7(NEGOTIATE_UNICODE,NEGOTIATE_OEM,REQUEST_TARGET),=20 flags2=3D130(NEGOTIATE_ALWAYS_SIGN,NEGOTIATE_NTLM), domain length=3D0, = domain=20 offset=3D0, host length=3D0, host offset=3D0, host=3D, = domain=3D<BR>[9600] AuthenNTLM:=20 Connect to pdc =3D co-dc1 bdc =3D domain =3D cmg-corp<BR>[9600] = AuthenNTLM:=20 enter lock<BR>[9600] AuthenNTLM: verify handle<BR>[9600] AuthenNTLM:=20 charencoding =3D 1<BR>[9600] AuthenNTLM: flags2 =3D 130<BR>[9600] = AuthenNTLM: Send=20 header: NTLM ...<BR>[9600] AuthenNTLM: Start NTLM Authen handler pid =3D = 9600,=20 connection =3D 163322120 conn_http_hdr =3D keep-alive main = =3D cuser =3D=20 remote_ip =3D 10.0.0.101 remote_port =3D remote_host =3D <> = version =3D=20 2.08<BR>[9600] AuthenNTLM: leave lock<BR>[9600] AuthenNTLM: Setup new=20 object<BR>[9600] AuthenNTLM: Config Domain =3D cmg-corp pdc =3D = co-dc1 =20 bdc =3D<BR>[9600] AuthenNTLM: Config Default Domain =3D = cmg-corp<BR>[9600]=20 AuthenNTLM: Config Fallback Domain =3D<BR>[9600] AuthenNTLM: Config = AuthType =3D=20 ntlm,basic AuthName =3D test<BR>[9600] AuthenNTLM: Config Auth NTLM =3D = 1 Auth Basic=20 =3D 1<BR>[9600] AuthenNTLM: Config NTLMAuthoritative =3D on = BasicAuthoritative=20 =3D on<BR>[9600] AuthenNTLM: Config Semaphore key =3D 23754 timeout =3D = 2<BR>[9600]=20 AuthenNTLM: Config SplitDomainPrefix =3D<BR>[9600] AuthenNTLM: = Authorization=20 Header NTLM<BR>[9600] AuthenNTLM: protocol=3DNTLMSSP, type=3D3, = </FONT><A=20 href=3D"mailto:user=3Df^@h^@e^@s^@s"><FONT = size=3D2>user=3Df^@h^@e^@s^@s</FONT></A><FONT=20 size=3D2>^@, </FONT><A = href=3D"mailto:host=3Dc^@o^@-^@h^@r^@-^@w^@e^@b^@0^@2"><FONT=20 size=3D2>host=3Dc^@o^@-^@h^@r^@-^@w^@e^@b^@0^@2</FONT></A><FONT = size=3D2>^@, domain=3D,=20 msg_len=3D0[9600] handler type =3D=3D 3<BR>[Tue Dec 28 09:27:38 2004] = [error] SMB=20 Server connection not open in state 3 for /<BR></FONT></SPAN></DIV> <DIV><SPAN class=3D815201716-28122004><FONT size=3D2>[9601] AuthenNTLM: = Config=20 Domain =3D cmg-corp pdc =3D co-dc1 bdc =3D<BR>[9601] = AuthenNTLM: Config=20 Default Domain =3D cmg-corp<BR>[9601] AuthenNTLM: Config Fallback Domain = =3D<BR>[9601] AuthenNTLM: Config AuthType =3D ntlm,basic AuthName =3D = test<BR>[9601]=20 AuthenNTLM: Config Auth NTLM =3D 1 Auth Basic =3D 1<BR>[9601] = AuthenNTLM: Config=20 NTLMAuthoritative =3D on BasicAuthoritative =3D on<BR>[9601] = AuthenNTLM:=20 Config Semaphore key =3D 23754 timeout =3D 2<BR>[9601] AuthenNTLM: = Config=20 SplitDomainPrefix =3D<BR>[9601] AuthenNTLM: Authorization Header = Basic<BR>[9601]=20 AuthenNTLM: basic auth username =3D cmg-corp\fhess<BR>[9601] AuthenNTLM: = Connect=20 to pdc =3D co-dc1 bdc =3D domain =3D cmg-corp<BR>[9601] = AuthenNTLM: enter=20 lock<BR>[9601] AuthenNTLM: verify handle fhess<BR>[9601] AuthenNTLM: = Verify user=20 fhess via smb server<BR>[9601] AuthenNTLM: leave lock<BR>[9601] = AuthenNTLM: OK=20 pid =3D 9601, connection =3D 163322120 cuser =3D cmg-corp\fhess ip =3D=20 10.0.0.101<BR>[9601] AuthenNTLM: Start NTLM Authen handler pid =3D 9601, = connection =3D 163322120 conn_http_hdr =3D keep-alive main =3D=20 Apache::RequestRec=3DSCALAR(0x9bbcb20) cuser =3D remote_ip =3D = 10.0.0.101=20 remote_port =3D remote_host =3D <> version =3D = 2.08<BR>[9601] AuthenNTLM:=20 Setup new object<BR>[9601] AuthenNTLM: Config Domain =3D cmg-corp = pdc =3D=20 co-dc1 bdc =3D<BR>[9601] AuthenNTLM: Config Default Domain =3D=20 cmg-corp<BR>[9601] AuthenNTLM: Config Fallback Domain =3D<BR>[9601] = AuthenNTLM:=20 Config AuthType =3D ntlm,basic AuthName =3D test<BR>[9601] AuthenNTLM: = Config Auth=20 NTLM =3D 1 Auth Basic =3D 1<BR>[9601] AuthenNTLM: Config = NTLMAuthoritative =3D=20 on BasicAuthoritative =3D on<BR>[9601] AuthenNTLM: Config = Semaphore key =3D=20 23754 timeout =3D 2<BR>[9601] AuthenNTLM: Config SplitDomainPrefix = =3D<BR>[9601]=20 AuthenNTLM: Authorization Header Basic<BR>[9601] AuthenNTLM: basic auth = username=20 =3D cmg-corp\fhess<BR>[9601] AuthenNTLM: Connect to pdc =3D co-dc1 bdc = =3D =20 domain =3D cmg-corp<BR>[9601] AuthenNTLM: enter lock<BR>[9601] = AuthenNTLM: verify=20 handle fhess<BR>[9601] AuthenNTLM: Verify user fhess via smb = server<BR>[9601]=20 AuthenNTLM: leave lock<BR>[9601] AuthenNTLM: OK pid =3D 9601, connection = =3D=20 163322120 cuser =3D cmg-corp\fhess ip =3D 10.0.0.101<BR>[9601] = AuthenNTLM: Start=20 NTLM Authen handler pid =3D 9601, connection =3D 163322120 conn_http_hdr = =3D=20 keep-alive main =3D Apache::RequestRec=3DSCALAR(0x9bbcb20) cuser = =3D =20 remote_ip =3D 10.0.0.101 remote_port =3D remote_host =3D <> = version =3D=20 2.08<BR></FONT></SPAN></DIV> <DIV><FONT size=3D2><SPAN = class=3D815201716-28122004></SPAN></FONT> </DIV> <DIV><FONT size=3D2><SPAN = class=3D815201716-28122004></SPAN></FONT> </DIV> <DIV><FONT><SPAN class=3D815201716-28122004><SPAN = class=3D110150020-28122004><FONT=20 size=3D2>Fraser Hess</FONT></SPAN></SPAN></FONT></DIV> <DIV><FONT><SPAN class=3D815201716-28122004><SPAN = class=3D110150020-28122004><FONT=20 size=3D2></FONT></SPAN> </DIV></SPAN></FONT></DIV></BODY></HTML> ------_=_NextPart_001_01C4ED18.8AE55AB5--
 |
Problems with Apache::AuthenNTLM on Apache 2
|
|
 |
Re: Problems with Apache::AuthenNTLM on Apache 2
|