Question

在apache php上遇到kerberos身份验证问题设置= RHEL 7 来自rhscl的apache 2.4 来自rhscl的php7配置了php-fpm

Kerberos在http://site.domain/上完美运行但不是http://site.domain/index.php

访问.php文件时，所有子目录都会出现同样的问题。

在vhost设置中有一个重写php到fcgi。

index.php =＆gt; $ _SERVER [＆＃39; REMOTE_USER＆＃39;]

vhost setup

<VirtualHost *:443 > 
  ## Vhost docroot
 DocumentRoot /opt/code70

 <Directory /opt/code70>
    Options Indexes MultiViews
    Options FollowSymLinks
    IndexOptions FancyIndexing HTMLTable VersionSort IgnoreCase
    IndexOrderDefault Descending Date
    IndexIgnore *.php

    AuthType Kerberos
AuthName "Kerberos"
KrbMethodNegotiate On
KrbMethodK5Passwd On
KrbAuthRealms ....
....    
KrbVerifyKDC Off
KrbSaveCredentials Off
KrbLocalUserMapping On
KrbAuthoritative On
    Order allow,deny
    Allow from all
    Require valid-user
</Directory>

## SSL directives
SSLEngine on
SSLCertificateFile      ......
SSLProtocol             -ALL +TLSv1
SSLCipherSuite           ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM
SSLHonorCipherOrder     On
ProxyPassMatch ^/(.*\.php(/.*)?)$ fcgi://localhost:9000/opt/code70/$1   
</VirtualHost>

kerberos apache php partialy working

0 个答案: