General :: Configure NTLM Authentication In Firefox?
Apr 7, 2010
Our IT department have NTLM deployed through the intranet servers.I've set network.automatic-ntlm-auth.trusted-uris value in Firefox on some of the Windows machines and that works fine.However setting it in Firefox on the Linux machines is not working.This doesn't surprise me at all, I've no notion of where Firefox on Linux is supposed to get the authentication details from.So how is this process supposed to work? what bits of config / infrastructure am I missing?
I want to configure NTLM for my Apache webserver, so that it uses active directory login credentials. Additional info : my listen port will be 82 (http://xxxx.com:82)
I'm writing some php code and part of it sending an email through smtp server, I used Mail.php from pear but unfortunately I didn't work since the smtp server is using NTLM authentication.Any alternates to Mail.php could solve this problem?
I have a squid server currently running with basic authentication. This is a must because we constantly have different people using different machines but the rules must be set per user, not per machine.
We also have a lot of users coming and going. So every time a new user comes to the office I have to manually create a user for him so he can authenticate.
Anyway.. We do not have any windows servers so no Active Directory. But I need some solution to pass the windows login to Squid.
First question: It seems I am using NTLM currently for samba as the person can map their home directories on their windows box withuot authenticating. Why can I not use it for squid?
Second question: Can I make my Centos server into an AD server?
I have a problem with the NTLM proxy we use in school. YAST proxy configuration won't work, it just says authentication error. We have to login with the user in DOMAINuser style and a password, in Firefox it works.
I have a CentOS 5 box that is a web server. When it generates emails, all emails should go out through our Exchange mail server.I believe our Exchange server requires NTLM authentication:
how to configure apt-get such that it will ask for authentication (user name and password) each time while accessing the Internet via proxy host, somewhat like sudo command. I don't want my username and password to be saved by apt-get in the apt-get configuration file.
I am using Kubuntu 10.04 with Firefox 3.6 from Mozilla's website and I use OpenJDK from the Ubuntu repsitories.I want to know how do I configure OpenJDK with the Firefox to view Java applets in the browser.
I intergrated the CAS on Liferay, it is working fine for single service. Now my goal is to configure Proxy Authentication on CAS to authenticate set of Liferay Services. I used the following services for proxy authentication, but unable to validate it.
Can any one tell me how to configure Tomcat ldap URL authentication perfectly? I've tomcat installed with port forwarding to http(80). I could able to confiure apache ldap authentication. For this i modified the file '/etc/apache2/sites-enabled/000-defaults' with the DocumentRoot /var/www.
But for tomcat '/usr/share/tomcat/webapps' I could not able to configure 'server.xml' file perfectly.
I am following the way given in the website : [URL]... but after configuring when i am trying to connect to the site [URL]... Authentication Fails and I am not able to log in with my LDAP user "Manager" I am using openldap version 2.4.21
Am using Fedora 15, in which i was able to configure the proxy server and authentication. i confirmed this by configuring web broswer and it works. Now the problem is that i want to deploy it out to other computer system(client) i dont want to use the transparent proxy because the Proxy Authentication will not work. I even tried to configure a DHCP server if it will work but i cant still configure for other computer system to work.
In our Server they configure Master / Slave Dns using SSL authentication while tranfering the zone files, i dont have much idea about ssl authentication for Dns, how it will works
if you go to Edit > prefs > security and choose to show saved passwords they are displayed without entering root pw. This seems to be a huge security hole. How do we fix this?
I have a problem I hope someone here can give me some guidance on. I have been looking for ways to do this and so far have come up short. My need is to keep logs of usage of several copiers for billing purposes. The copiers have a built in account code system, with a 999 code limit and will keep the counts, however we have about 12,000 active accounts. Not every account will have usage every month and not every copier needs every account. The last thing I want to have to do is manually update the copier account information every day.
The copiers can authenticate against NTLM (v1 and v2) and "Active Directory" I am told they will happily access LDAP or e-Directory (we are a Novell shop). I dont' want to authenticate users, I want to authenticate "Accounts". I have a MS SQL database that has the "Account information" and my thought was to set up a way to have an LDAP server access the M$ SQL DB (probably a view) to get authentication for the copier to allow the prints and keep the counts. Which I can then import weekly into the accounting system.
So the question is has anyone ever done something like this? Anyone have any idea how best to go about accomplishing this? I guess I could set up an LDAP server separately for the purpose, but it seems I should be able to consolidate things more than that, so that if the account is "Active" it is Authenticated to the copiers If this works well, I will be probably be moving to moving to phone authentication next.
I'm trying to write a script in Perl to download a file that requires NTLM authentication to access, stored on a machine on this network.The file exists, and can be accessed through a web-browser, btw.
Seismicmike here. My first post. I'll try to be as clear and concise as possible. For the sake of this post, I'm going to use 1.2.3.4 as a place holder for my public IP. On my web server, I would like to be able to access the /var/ftp directory through a web browser. I have successfully done so with Google Chrome, but I cannot access the directory in Firefox or IE. Both FF and IE ask me for authentication but then time out attempting to load the directory.
I suspect that there may be something up with switching to passive mode and/or that this issue may be more with my configuration of Firefox and not with the server (seeing as how Chrome works). Another possibility may be related to SSL. When I connect with FileZilla, I have to use the FTP over Explicit SSL/TLS option in order to connect. In any case I still would like to fix it. I would also like to avoid having to install FireFTP if at all possible.
Steps to reproduce (not that you can without my actual IP =J):
* Open Chrome * Go to ftp://1.2.3.4 * Enter username * Enter password
I have a problem setting up a SSH tunnel. I know how it's usually done, but the setup is different this time. I am behind a HTTP(S) and FTP proxy, that does NTLM authentication, and I want to access a server beyond the proxy. MY CLIENT <-> LAN <-> HTTP PROXY <-> INTERNET <-> MY SERVER
So far, the best I have achieved is installing and configuring CNTLM as a local proxy for the authentication part. Using CNTLM, I managed to access and mount a secured (https) DAV share using davfs2. In theory, CNTLM should let me setup permanent tunnels from local ports to distant ports, and it does; however these tunnels don't seem to work for SSH nor for IMAP (another protocol I tried).
I suspect the problem is that neither SSH nor IMAP is HTTP- or FTP-based, but anyway it does not work. So back to square one: how should I proceed to get ssh to connect through the HTTP proxy (with NTLM authentication) to the remote server? For that matter, if there's a better way than SSH to create a tunnel, that would work in my situation, that's OK with me. Just in case, here are the relevant parts from my firewall setup on the server:
# allow continuation of established connections iptables -t filter -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -t filter -A INPUT -f -j ACCEPT
# allow local connections iptables -t filter -A INPUT -i lo -j ACCEPT
# open ports: # ssh iptables -t filter -A INPUT -p tcp --dport 22 -j ACCEPT Yves.
I want to Configure Linux LDAP Server for user authentication when my users want to connect to the internet.Also i don't want the user to get the home directory on server. i configured ldap server and ldap client without PAM & SASL.and now with perl i can search in ldap for my client's username & password in ldap.
I need to have firefox 3.6.17 on my RHEL5.5 machine to perform testing. I'm unable to find the required software. where can i find the firefox rpm for RHEL5.5 and how to install/configure it.
i have mozilla 3.0.8 in my ubuntu 9.04 & i cannot configure java in firefox.so when i check in the website of java that if i hav proper java installed or not they say i dont have any proper version installed.but i checked from synaptic that i have java 1.6.0 installed.so what to do??
On Ubuntu server 10.10, with a relay smtp server with authentication via postfix; I keep getting 535: Incorrect authentication data. I'm sure my username and password is correct. Heres how I set up postfix: I created a file called smarthosts.conf in my /etc/postfix/ directory that contains the following:
[Code].....
my server uses plain text authentication on port 25. I would like to use security like SSL, but this particular server is unsecured.
If I am running a script, let's say a install script. Is there a way to make Su repeat authentication rather then just returning "Authentication failed" and continuing the script?
I need to make a choice on what authentication protocol I want to use for Authentication and Authorization. I was looking at Radius and then literature suggested that Diameter was a better protocol. Keep in mind I need this on a hetrogeneous setup ( linux & windows together). Diameter seemed like a good fit until I discovered that the open source code no longer seems to be maintained ( C/C++).
I was also looking at Kerberos as an option though there is alot overhead with the server. SSL/TLS or EAP? I am looking for simple but secure and am new at the security protocols.
