...
Code Block | ||
---|---|---|
| ||
'authentication' => {
'auth_htpasswd_file' => '<omk_conf>/users.dat',
'auth_htpasswd_encrypt' => 'crypt',
'auth_method_1' => 'htpasswd',
'auth_method_2' => '',
'auth_method_3' => '',
'auth_login_motd' => 'Authentication required: default credentials are nmis/nm1888',
'auth_crowd_server' => '',
'auth_crowd_user' => '',
'auth_crowd_password' => '',
'auth_sso_domain' => '',
'auth_expire_seconds' => '3600',
'auth_lockout_after' => 0,
#'auth_ms_ldap_attr' => 'sAMAccountName',
#'auth_ms_ldap_base' => 'CN=Users,DC=your_domain,DC=com',
#'auth_ms_ldap_group' => 'CN=Users,DC=your_domain,DC=com',
#'auth_ms_ldap_debug' => 'false',
#'auth_ms_ldap_dn_acc' => 'CN=Administrator,CN=Users,DC=your_domain,DC=com',
#'auth_ms_ldap_dn_psw' => 'your_administrator_password',
#'auth_ms_ldap_server' => 'your.ip.address.here'
}, |
...
Method | Description |
---|---|
ldap | OMK will use the configured LDAP server to perform authentication Config: |
ldaps (secure) | OMK will use the configured LDAP server to perform authentication auth_ldaps_server => 'host[:port]' |
ms-ldap | OMK will use the configured Microsoft Active Directory (LDAP) server to perform authenticationConfigauthentication Config: auth_ms_ldap_group => '' #checks if the user logging in is associated with the defined group. |
ms-ldaps (secure) | OMK will use the configured Microsoft Active Directory (LDAP) server to perform authentication Config: auth_ms_ldap_group => '' #checks if the user logging in is associated with the defined group. |
radius | OMK will use the configured radius server (Cisco ACS or Steel Belted Radius for example) Config: |
tacacs | OMK will use the configured Tacacs+ server (Cisco ACS for example) Config: |
htpasswd | OMK will use the users defined in the OMK Users file, by default /usr/local/omk/conf/users.dat. Very often /usr/local/omk/conf/users.dat is a symlink pointing to /usr/local/nmis8/conf/users.dat. The htpasswd user file may be changed by altering the auth_htpasswd_file key in the opCommon.nmis authentication hash. |
token | Delegated authentication by token as described here: Delegated Authentication |
...