Hi all,

Has anyone ever tried to do kerberos SSO (Active Directory) on centreon?

I presume a few things would be necessary to do this :

use apache authentication (with mod_auth_kerb) instead of centreon authentication.
automatically create centreon accounts for authenticated users
retrieve group membership information from AD and assign users to centreon groups.
Can you give me tips to do these ?

Hi,

Have you seen this link ? : http://fr.doc.centreon.com/Configure:UseLDAP_ActiveDirectoryForImportUsers/fr

My config: ADs level 2000 mixed on windows 2003 SP1.
Centreon v1.4.

I'll try centreon v2 this week.

Thanks for the reply.


I want to use LDAP for authorization only (group membership). For authentication I'd like to use kerberos (in fact I want to let Apache do authentication, and I want Centreon to use the 'REMOTE_USER' php variable, with no prompt for login/password). I'm trying to write a php module to do this. Any tips are welcome :

how to tell centreon that the user is authenticated as $ENV['REMOTE_USER'] ?
how to automatically create a centreon account for an authenticated user who has not yet a centreon account ?
how to assign/remove a user to/from a group ?

see in this threads

http://forum.centreon.com/showthread.php?p=42026


i add the patch for kerberso in centreon

enjoy