I posted what I had because a bunch of folks asked me to off list. While not specific to LDAP, I'm sure some folks will find it useful. Don't think I mention NTLM or LDAP in the final docs I posted and the title was pretty specific about where it worked.
Yes, I know it's Kerberos, not NTLM and I linked to the page where I gained a bunch of this info which provides details on the keytabs for a bunch of different environments.
Stewart
On Thu, Apr 9, 2009 at 2:48 AM, Buchan Milne <bgmilne at staff.telkomsa.net>wrote:
On Wednesday 08 April 2009 02:33:40 Stewart L wrote:
I got this working RHEL5 against Active Directory. Even got transparent NTLM Authentication set up so it authenticates the user automatically. I'd be happy to share if you're looking at an AD environment. Might work for generic LDAP as well.
Sorry to be pedantic, but the documentation you provided is not for NTLM authentication, but for Kerberized authentication. The Apache-related documentation should be valid in any Kerberos environment, but the details of how to issue keytabs depends on the implementation used for the KDC (e.g., with Heimdal it is possible to create the keytab from the host that needs it, in place, no copying is required, but this is not the case with MIT).
Your howto has nothing to do with LDAP btw ...
-- Stewart
If you see yourself in others, then whom can you harm?