我想修改这个片段,以便接受来自某个IP子网的连接,而不需要authentication。
这可能吗?
TIA
肖恩
<Location "/rssbus"> AuthBasicProvider ldap AuthType Basic AuthzLDAPAuthoritative on AuthLDAPURL "ldap://blah.com:3628/DC=blah,DC=com?sAMAccountName?sub?(objectClass=*)" STARTTLS AuthLDAPBindDN "[email protected]" AuthLDAPBindPassword XXXXXXXX AuthLDAPRemoteUserIsDN off Require valid-user Require ldap-group mygroup,OU=IT,OU=Groups,OU=gong,DC=blah,DC=com ProxyPass https://stgjo/bus ProxyPassReverse https://stgjo/bus
您将需要添加一个Satisfy指令。 就像这里所描述的那样
所以这会给你:
<Location "/rssbus"> AuthBasicProvider ldap AuthType Basic AuthzLDAPAuthoritative on AuthLDAPURL "ldap://blah.com:3628/DC=blah,DC=com?sAMAccountName?sub?(objectClass=*)" STARTTLS AuthLDAPBindDN "[email protected]" AuthLDAPBindPassword XXXXXXXX AuthLDAPRemoteUserIsDN off Require valid-user Require ldap-group mygroup,OU=IT,OU=Groups,OU=gong,DC=blah,DC=com Order allow,deny Allow from your.ip.address.allowed Satisfy Any ProxyPass https://stgjo/bus ProxyPassReverse https://stgjo/bus