Deploying Postfix with LDAP (FreeIPA) virtual aliases and Kerberos Authentication

For those of you looking for a way to set up Postfix so your client base can login with Single Sign On, this article is for you. Here we will be walking through configuring postfix for the following criteria: LDAP based User lookups (In this article I have used FreeIPA 3.0) Single Sign On authentication […]

Authenticating Apache Virtual Hosts with Kerberos

Below is a quick walk through on setting up an Apache virtual host with kerberos authentication.

If you use or are looking to integrate single sign on into your websites or web based applications in your environment, this will be for you.

Example Details

In this article I will be setting up a new website called, using the below details.

Web Server Name:
Web Server Operating System: Red Hat Enterprise Linux 6.3
Kerberos Realm: EXAMPLE.COM
Kerberos Username: testuser

Continue reading “Authenticating Apache Virtual Hosts with Kerberos” »

Implementing FreeIPA as a central Identity Management Solution

Many of my customers from many companies that have a reliance on Microsoft Active Directory to manage their server and workstation estate. This is great if you have a Windows only organisation.

However, although you can add Linux systems directly to Active Directory, you don’t maintain the same level of control over the systems in the same way that you would have with a Windows server connected to the same domain.

Continue reading “Implementing FreeIPA as a central Identity Management Solution” »

Squid Proxy integration with Active Directory – The quick and simple way

UPDATE: This guide originally showed you how to configure Squid to authenticate with Pam. However as many people have been searching for ways to authenticate with Kerberos, I have updated this article to refect the necessary changes. The upside is, you now have Single Sign On (SSO) as a bonus. Your users will not be […]