Vhosts file update
Posted: Thu 14. Sep 2023, 09:54
Hello there,
We have installed LDAP Kerberos on our website.
To archive this, we have updated /etc/apache2/keyhelp/vhosts/boris.conf file.
https://plugins.miniorange.com/guide-to ... sso#step-1
Now, every time we change something related to the domain in keyhelp, we lose our custom settings.
This is a line that we add:
<Directory "/home/users/boris/www/">
# Require all granted
Require valid-user
Options SymLinksIfOwnerMatch
AuthType Kerberos
AuthName "Kerberos auth"
KrbServiceName HTTP/domain.int@domain.INT
Krb5Keytab /etc/krb5.keytab
BrowserMatch Windows gssapi-no-negotiate
BrowserMatch Chrome gssapi-no-negotiate
KrbMethodNegotiate on
KrbMethodK5Passwd on
#GssapiAllowedMech krb5
#GssapiBasicAuth On
#GssapiCredStore keytab:/etc/krb5.keytab
#GssapiLocalName On
#BrowserMatch Windows gssapi-no-negotiate
</Directory>
Can we somehow keep this line it the file, even if I made some domain-related changes?
Regards
We have installed LDAP Kerberos on our website.
To archive this, we have updated /etc/apache2/keyhelp/vhosts/boris.conf file.
https://plugins.miniorange.com/guide-to ... sso#step-1
Now, every time we change something related to the domain in keyhelp, we lose our custom settings.
This is a line that we add:
<Directory "/home/users/boris/www/">
# Require all granted
Require valid-user
Options SymLinksIfOwnerMatch
AuthType Kerberos
AuthName "Kerberos auth"
KrbServiceName HTTP/domain.int@domain.INT
Krb5Keytab /etc/krb5.keytab
BrowserMatch Windows gssapi-no-negotiate
BrowserMatch Chrome gssapi-no-negotiate
KrbMethodNegotiate on
KrbMethodK5Passwd on
#GssapiAllowedMech krb5
#GssapiBasicAuth On
#GssapiCredStore keytab:/etc/krb5.keytab
#GssapiLocalName On
#BrowserMatch Windows gssapi-no-negotiate
</Directory>
Can we somehow keep this line it the file, even if I made some domain-related changes?
Regards