Nagios - LDAP/RSA authentication

[Kevin Keane]

There is no such thing as a "session" in Nagios. It simply uses plain 
HTTP authentication. That means that the user name and password is sent 
with every single HTTP request; request are not tied together the way 
you might be used to from online banking sites and the like.

What you are observing could be due to a couple of different factors, 
but it is almost certainly neither LDAP, Apache nor Nagios, but rather 
the Web browser.

- The most likely cause: you say that the RSA passwords change 
frequently. When the RSA password changes, the browser has no way of 
knowing that, and will continue to send the old password. This is 
rejected, and the browser then pops up the login dialog.

- The browser may for some reason think that it is connecting to a 
different server, where the user name and password are no longer valid.

- The browser may for some reason actually forget the user name and 
password.

Mohammed Al-Kout wrote:
> Warner,
>
> the session seems to be expiring after ( 10-20) and nagios asks for 
> reauthentication, ( we are using RSA passwords that change frequently 
> so the LDAPCAche does not apply in our case ) are you using 
> mod_auth_ldap ?
> what are the parameters you use in the httpd.conf for LDAP Cache settings
>
> Best Regards
> --
> Mohammed Al-Kout
>
>
>
>
>
> On Wed, Jan 21, 2009 at 16:22, Werner Flamme <werner.flamme at ufz.de 
> <mailto:werner.flamme at ufz.de>> wrote:
>
>     Mohammed Al-Kout [21.01.2009 14:00]:
>     > Hello,
>     >
>     > i'm running Nagios 3.0.1 on Apache 2.0.52 its been running on a
>     local
>     > userfile for sometime, recently i switched to LDAP
>     authentication with
>     > mod_auth_ldap its working fine, the problem is i'm getting the
>     > authentication popup every 10-20 mins, is there a way to stop
>     this or set a
>     > longer interval  ? i'm not sure what is causing this popup to
>     reappear (
>     > LDAP , Apache or Nagios ) if anyone has an idea please lemme know
>
>     Neither of them. We use LDAP auth for years, and there are no such
>     popups.
>
>     Regards,
>     Werner
>


-- 
Kevin Keane
Owner
The NetTech
Find the Uncommon: Expert Solutions for a Network You Never Have to Think About

Office: 866-642-7116
http://www.4nettech.com

This e-mail and attachments, if any, may contain confidential and/or proprietary information. Please be advised that the unauthorized use or disclosure of the information is strictly prohibited. The information herein is intended only for use by the intended recipient(s) named above. If you have received this transmission in error, please notify the sender immediately and permanently delete the e-mail and any copies, printouts or attachments thereof.


------------------------------------------------------------------------------
This SF.net email is sponsored by:
SourcForge Community
SourceForge wants to tell your story.
http://p.sf.net/sfu/sf-spreadtheword
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null