From a2c2a02edaadda09408708cf9d7b57aa59ae4b39 Mon Sep 17 00:00:00 2001 From: Simo Sorce Date: Mon, 25 May 2015 16:46:23 +0200 Subject: Add GssapiAllowedMech option This option allows the admin to list the mechanisms that can be used for authentication. An empty list allows any locally supported mechanisms. --- README | 12 ++++++++++++ 1 file changed, 12 insertions(+) (limited to 'README') diff --git a/README b/README index e8d3031..87b1436 100644 --- a/README +++ b/README @@ -204,3 +204,15 @@ Example: GssapiCredStore keytab:/etc/httpd/http.keytab Require valid-user + + +### GssapiAllowedMech + +List of allowed mechanisms. This is useful to restrict the mechanism that +can be used when credentials for multiple mechanisms are available. +By default no mechanism is set, this means all locally available mechanisms +are allowed. The recognized mechanism names are: krb5, iakerb, ntlmssp + +Example: + GssapiAllowedMech krb5 + GssapiAllowedMech ntlmssp -- cgit