Hi All,
I'm struggling for 2 weeks now to get basic authentication working together with kerberos.
The thing is, our entire user management of about 1000 accounts is in kerberos, not ldap so i would like to ask some help here since i couldn't find it on the forum nor google. :-(
Here it goes...
I've installed 1.12 and now 1.10, but I encounter the same issue.
Server is centos 7.6, apache 2.4. tried php 7.4, 7.3 and 7.2 and now to test 1.10, installed php 5.4
My apache kerberos config.
_AuthType Kerberos
AuthName "Kerberos DOMAIN"
KrbAuthRealms DOMAIN
KrbMethodNegotiate off
KrbMethodK5Passwd on
KrbVerifyKDC off
Require valid-user
Options +ExecCGI__
This is the kerberos setup we use for about 200 internal webpages. No errors, so authentication based on a username and password is working properly. Maybe I'm missing an extra setting which is needed for osticket to work?
When using http passthrough, osticket requires a password to be configured, a password reset etc. Is there a reason for this? Afaik, it is all stored in kerberos and centrally managed?
Our kerberos system is working on username password (not email). While importing, you can add via forms an extra value field username, but it is stored in the cdata table and not in the ost_user_account? Can specific fields in a form be linked to a specific field in the database?
So to make a long story short... we have centrally managed usernames, passwords and emails in a database. Our kerberos is populated with usernames and passwords. How can I get http-auth working and fill the ost database with:
active accounts (without clicking and enabling them one by one)?
Put usernames in the ost_user_account table and not requiring a password?
Use the basic auth-fields of apache and login automatically?
I hope I gave you guys enough information, but if needed, I will provide more if needed! It is the only tool with fulfils our needs (if we can get basic auth working ofc...).
Thanks in advance!!!
