If VAS was setup with a no-way-trust between two domains (two one-way trust, but the domains don't know anything about each other) can mod_auth_vas be configured to take advantage of this? I see in the documentation at http://rc.quest.com/topics/mod_auth_vas/install.php#config-eg under example configurations that it seems possible.
What I am curious about is if there is no communication between the two domains administration and they have duplicate UID and GID's.. Can this or will this be a problem with mod_auth_vas?
What I am curious about is if there is no communication between the two domains administration and they have duplicate UID and GID's.. Can this or will this be a problem with mod_auth_vas?
Here is an example .htaccess:
AuthType VASIf the server is joined to the EXAMPLE.COM domain, thenthe directives above allow the following users to access files in the directory:
Require user alice bob alice@ELSEWHERE.COM
Require group finance
Require group it
Require group "Domain Admins"
Require container "ou=Sales, dc=example, dc=com"
AuthVasUseBasic on
- a user with the principal name alice@EXAMPLE.COM
- a user with the principal name bob@EXAMPLE.COM
- a user with the principal name alice@ELSEWHERE.COM
- anyone in the Unix-enabled AD groups finance or it
- anyone from the Active Directory group Domain Admins
- anyone from the org-unit OU=Sales,DC=Example,DC=COM
The last line (AuthVasUseBasic on) enables the insecure 'Basic' authentication fallback, and should only be used with HTTPS.