Previous Topic: Set Up NTLM AuthenticationNext Topic: Configure NTLM Authentication with Another Type of Load Balancer

ClusteringSet Up NTLM AuthenticationConfigure NTLM Authentication with Apache Load Balancer

Configure NTLM Authentication with Apache Load Balancer

If you are using Apache Load Balancer, perform this process on each cluster to set up NTLM authentication.

Important! This topic applies only if you are using Apache Load Balancer!

Follow these steps:

  1. Download the mod_auth_sspi module from the sourceforge web site, sourceforge.net.
  2. Copy the mod_auth_sspi.so module to the <APACHE_Home>\modules directory of the Apache web server that you use for CA Service Catalog.
  3. Append the following configuration section to the <APACHE_Home>\conf\httpd.conf file: 
    LoadModule sspi_auth_module modules/mod_auth_sspi.so
<Location ~ "/usm/(wpf|documents|FileStore)">
AuthName "domain_name"
AuthType SSPI
SSPIAuth On
SSPIOfferBasic On
SSPIAuthoritative On
SSPIDomain "domain_name"
SSPIofferSSPI off
require valid-user
</Location>
  4. In this section, replace domain_name with the name of your network domain or Windows domain.
  5. Verify that the tomcatAuthentication="false" attribute is set for the Tomcat connectors that this Apache load balancer uses.

    This setting is the default in all server.xml connectors.

You have configured NTLM authentication to work with Apache Load Balancer.