|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
ASP.NET 1.1 + IIS 5 + NagiosHi all there,
we have a APS.NET 1.1 Application running on IIS 5 and SQL Server 2000. We use Integrated Windows Security. Now we want to monitor the application by use of Nagios. It seems that Nagios doesn't support keberos. So another idea is to additionally set basic authentication that a monitoring-user can access the page. My question is, can I enable basic authentication only for that one user? Or does someone have information about Nagios running with kerberos? Thanks a lot Daniel Hi,
To monitor the web applcation using NAGIOS there is nothing to do with "Intergrated windows authentication" or "kerberos", what you have to do is install the nagios windows plugins available on the Nagios site to the windows web server which will check for the service and site avilabilty at specific time intervall, the plugin will act like a client and send the updates to the Nagios server about the service and site status. Go for plugin as it will give you more felxiblility as u can also monitor specific URL and not only services. Thanks & Regards Jigs4u_4ever Show quoteHide quote "danielsanber***@googlemail.com" wrote: > Hi all there, > > we have a APS.NET 1.1 Application running on IIS 5 and SQL Server 2000. > We use Integrated Windows Security. > > Now we want to monitor the application by use of Nagios. It seems that > Nagios doesn't support keberos. So another idea is to additionally set > basic authentication that a monitoring-user can access the page. > > My question is, can I enable basic authentication only for that one > user? > Or does someone have information about Nagios running with kerberos? > > Thanks a lot > Daniel > > Hi,
we couldn't relate to that. When we access the application Nagios tries to authentificate with NLTM and that fails! Actually the only way, it seems to work, is with basic authentication! We couldn't find a plugin that would help us! Greetings Daniel jigs4u4ever schrieb: Show quoteHide quote > Hi, > > To monitor the web applcation using NAGIOS there is nothing to do with > "Intergrated windows authentication" or "kerberos", what you have to do is > install the nagios windows plugins available on the Nagios site to the > windows web server which will check for the service and site avilabilty at > specific time intervall, the plugin will act like a client and send the > updates to the Nagios server about the service and site status. Go for plugin > as it will give you more felxiblility as u can also monitor specific URL and > not only services. > > Thanks & Regards > Jigs4u_4ever > > "danielsanber***@googlemail.com" wrote: > > > Hi all there, > > > > we have a APS.NET 1.1 Application running on IIS 5 and SQL Server 2000. > > We use Integrated Windows Security. > > > > Now we want to monitor the application by use of Nagios. It seems that > > Nagios doesn't support keberos. So another idea is to additionally set > > basic authentication that a monitoring-user can access the page. > > > > My question is, can I enable basic authentication only for that one > > user? > > Or does someone have information about Nagios running with kerberos? > > > > Thanks a lot > > Daniel > > > > Perhaps it is that they are failing to negotiate a common
version of NTLM or of NTLM signing ? <danielsanber***@googlemail.com> wrote in message Show quoteHide quote news:1155215659.271331.192040@h48g2000cwc.googlegroups.com... > Hi, > > we couldn't relate to that. When we access the application Nagios tries > to authentificate with NLTM and that fails! > Actually the only way, it seems to work, is with basic authentication! > We couldn't find a plugin that would help us! > > Greetings > Daniel > > jigs4u4ever schrieb: > >> Hi, >> >> To monitor the web applcation using NAGIOS there is nothing to do with >> "Intergrated windows authentication" or "kerberos", what you have to do >> is >> install the nagios windows plugins available on the Nagios site to the >> windows web server which will check for the service and site avilabilty >> at >> specific time intervall, the plugin will act like a client and send the >> updates to the Nagios server about the service and site status. Go for >> plugin >> as it will give you more felxiblility as u can also monitor specific URL >> and >> not only services. >> >> Thanks & Regards >> Jigs4u_4ever >> >> "danielsanber***@googlemail.com" wrote: >> >> > Hi all there, >> > >> > we have a APS.NET 1.1 Application running on IIS 5 and SQL Server 2000. >> > We use Integrated Windows Security. >> > >> > Now we want to monitor the application by use of Nagios. It seems that >> > Nagios doesn't support keberos. So another idea is to additionally set >> > basic authentication that a monitoring-user can access the page. >> > >> > My question is, can I enable basic authentication only for that one >> > user? >> > Or does someone have information about Nagios running with kerberos? >> > >> > Thanks a lot >> > Daniel >> > >> > > yes, that is the problem! Any idea how to avoid that?
Roger Abell [MVP] schrieb: Show quoteHide quote > Perhaps it is that they are failing to negotiate a common > version of NTLM or of NTLM signing ? > > <danielsanber***@googlemail.com> wrote in message > news:1155215659.271331.192040@h48g2000cwc.googlegroups.com... > > Hi, > > > > we couldn't relate to that. When we access the application Nagios tries > > to authentificate with NLTM and that fails! > > Actually the only way, it seems to work, is with basic authentication! > > We couldn't find a plugin that would help us! > > > > Greetings > > Daniel > > > > jigs4u4ever schrieb: > > > >> Hi, > >> > >> To monitor the web applcation using NAGIOS there is nothing to do with > >> "Intergrated windows authentication" or "kerberos", what you have to do > >> is > >> install the nagios windows plugins available on the Nagios site to the > >> windows web server which will check for the service and site avilabilty > >> at > >> specific time intervall, the plugin will act like a client and send the > >> updates to the Nagios server about the service and site status. Go for > >> plugin > >> as it will give you more felxiblility as u can also monitor specific URL > >> and > >> not only services. > >> > >> Thanks & Regards > >> Jigs4u_4ever > >> > >> "danielsanber***@googlemail.com" wrote: > >> > >> > Hi all there, > >> > > >> > we have a APS.NET 1.1 Application running on IIS 5 and SQL Server 2000. > >> > We use Integrated Windows Security. > >> > > >> > Now we want to monitor the application by use of Nagios. It seems that > >> > Nagios doesn't support keberos. So another idea is to additionally set > >> > basic authentication that a monitoring-user can access the page. > >> > > >> > My question is, can I enable basic authentication only for that one > >> > user? > >> > Or does someone have information about Nagios running with kerberos? > >> > > >> > Thanks a lot > >> > Daniel > >> > > >> > > > You just need to make certain that the allowed settings for
NTLM in the effective group policies of both machines will allow for a common version (I use NTLM v2 only) and for an agreed level on NTLM communications security. It is all in the local security policy, or dominating GPOs security options settings. <danielsanber***@googlemail.com> wrote in message Show quoteHide quote news:1155280508.198626.91510@i42g2000cwa.googlegroups.com... > yes, that is the problem! Any idea how to avoid that? > > Roger Abell [MVP] schrieb: > >> Perhaps it is that they are failing to negotiate a common >> version of NTLM or of NTLM signing ? >> >> <danielsanber***@googlemail.com> wrote in message >> news:1155215659.271331.192040@h48g2000cwc.googlegroups.com... >> > Hi, >> > >> > we couldn't relate to that. When we access the application Nagios tries >> > to authentificate with NLTM and that fails! >> > Actually the only way, it seems to work, is with basic authentication! >> > We couldn't find a plugin that would help us! >> > >> > Greetings >> > Daniel >> > >> > jigs4u4ever schrieb: >> > >> >> Hi, >> >> >> >> To monitor the web applcation using NAGIOS there is nothing to do with >> >> "Intergrated windows authentication" or "kerberos", what you have to >> >> do >> >> is >> >> install the nagios windows plugins available on the Nagios site to the >> >> windows web server which will check for the service and site >> >> avilabilty >> >> at >> >> specific time intervall, the plugin will act like a client and send >> >> the >> >> updates to the Nagios server about the service and site status. Go for >> >> plugin >> >> as it will give you more felxiblility as u can also monitor specific >> >> URL >> >> and >> >> not only services. >> >> >> >> Thanks & Regards >> >> Jigs4u_4ever >> >> >> >> "danielsanber***@googlemail.com" wrote: >> >> >> >> > Hi all there, >> >> > >> >> > we have a APS.NET 1.1 Application running on IIS 5 and SQL Server >> >> > 2000. >> >> > We use Integrated Windows Security. >> >> > >> >> > Now we want to monitor the application by use of Nagios. It seems >> >> > that >> >> > Nagios doesn't support keberos. So another idea is to additionally >> >> > set >> >> > basic authentication that a monitoring-user can access the page. >> >> > >> >> > My question is, can I enable basic authentication only for that one >> >> > user? >> >> > Or does someone have information about Nagios running with kerberos? >> >> > >> >> > Thanks a lot >> >> > Daniel >> >> > >> >> > >> > > hmmm, I didn't mention that our Nagios is running under Linux. We don`t
know how to teach NTLM to Linux!? Roger Abell [MVP] schrieb: Show quoteHide quote > You just need to make certain that the allowed settings for > NTLM in the effective group policies of both machines will > allow for a common version (I use NTLM v2 only) and for > an agreed level on NTLM communications security. > It is all in the local security policy, or dominating GPOs > security options settings. > > <danielsanber***@googlemail.com> wrote in message > news:1155280508.198626.91510@i42g2000cwa.googlegroups.com... > > yes, that is the problem! Any idea how to avoid that? > > > > Roger Abell [MVP] schrieb: > > > >> Perhaps it is that they are failing to negotiate a common > >> version of NTLM or of NTLM signing ? > >> > >> <danielsanber***@googlemail.com> wrote in message > >> news:1155215659.271331.192040@h48g2000cwc.googlegroups.com... > >> > Hi, > >> > > >> > we couldn't relate to that. When we access the application Nagios tries > >> > to authentificate with NLTM and that fails! > >> > Actually the only way, it seems to work, is with basic authentication! > >> > We couldn't find a plugin that would help us! > >> > > >> > Greetings > >> > Daniel > >> > > >> > jigs4u4ever schrieb: > >> > > >> >> Hi, > >> >> > >> >> To monitor the web applcation using NAGIOS there is nothing to do with > >> >> "Intergrated windows authentication" or "kerberos", what you have to > >> >> do > >> >> is > >> >> install the nagios windows plugins available on the Nagios site to the > >> >> windows web server which will check for the service and site > >> >> avilabilty > >> >> at > >> >> specific time intervall, the plugin will act like a client and send > >> >> the > >> >> updates to the Nagios server about the service and site status. Go for > >> >> plugin > >> >> as it will give you more felxiblility as u can also monitor specific > >> >> URL > >> >> and > >> >> not only services. > >> >> > >> >> Thanks & Regards > >> >> Jigs4u_4ever > >> >> > >> >> "danielsanber***@googlemail.com" wrote: > >> >> > >> >> > Hi all there, > >> >> > > >> >> > we have a APS.NET 1.1 Application running on IIS 5 and SQL Server > >> >> > 2000. > >> >> > We use Integrated Windows Security. > >> >> > > >> >> > Now we want to monitor the application by use of Nagios. It seems > >> >> > that > >> >> > Nagios doesn't support keberos. So another idea is to additionally > >> >> > set > >> >> > basic authentication that a monitoring-user can access the page. > >> >> > > >> >> > My question is, can I enable basic authentication only for that one > >> >> > user? > >> >> > Or does someone have information about Nagios running with kerberos? > >> >> > > >> >> > Thanks a lot > >> >> > Daniel > >> >> > > >> >> > > >> > > > hmmmm . . .
well, samba does teach it ot linux, but I am not sure nagios would use it <danielsanber***@googlemail.com> wrote in message Show quoteHide quote news:1155719351.993941.97240@p79g2000cwp.googlegroups.com... > hmmm, I didn't mention that our Nagios is running under Linux. We don`t > know how to teach NTLM to Linux!? > > > > Roger Abell [MVP] schrieb: > >> You just need to make certain that the allowed settings for >> NTLM in the effective group policies of both machines will >> allow for a common version (I use NTLM v2 only) and for >> an agreed level on NTLM communications security. >> It is all in the local security policy, or dominating GPOs >> security options settings. >> >> <danielsanber***@googlemail.com> wrote in message >> news:1155280508.198626.91510@i42g2000cwa.googlegroups.com... >> > yes, that is the problem! Any idea how to avoid that? >> > >> > Roger Abell [MVP] schrieb: >> > >> >> Perhaps it is that they are failing to negotiate a common >> >> version of NTLM or of NTLM signing ? >> >> >> >> <danielsanber***@googlemail.com> wrote in message >> >> news:1155215659.271331.192040@h48g2000cwc.googlegroups.com... >> >> > Hi, >> >> > >> >> > we couldn't relate to that. When we access the application Nagios >> >> > tries >> >> > to authentificate with NLTM and that fails! >> >> > Actually the only way, it seems to work, is with basic >> >> > authentication! >> >> > We couldn't find a plugin that would help us! >> >> > >> >> > Greetings >> >> > Daniel >> >> > >> >> > jigs4u4ever schrieb: >> >> > >> >> >> Hi, >> >> >> >> >> >> To monitor the web applcation using NAGIOS there is nothing to do >> >> >> with >> >> >> "Intergrated windows authentication" or "kerberos", what you have >> >> >> to >> >> >> do >> >> >> is >> >> >> install the nagios windows plugins available on the Nagios site to >> >> >> the >> >> >> windows web server which will check for the service and site >> >> >> avilabilty >> >> >> at >> >> >> specific time intervall, the plugin will act like a client and send >> >> >> the >> >> >> updates to the Nagios server about the service and site status. Go >> >> >> for >> >> >> plugin >> >> >> as it will give you more felxiblility as u can also monitor >> >> >> specific >> >> >> URL >> >> >> and >> >> >> not only services. >> >> >> >> >> >> Thanks & Regards >> >> >> Jigs4u_4ever >> >> >> >> >> >> "danielsanber***@googlemail.com" wrote: >> >> >> >> >> >> > Hi all there, >> >> >> > >> >> >> > we have a APS.NET 1.1 Application running on IIS 5 and SQL Server >> >> >> > 2000. >> >> >> > We use Integrated Windows Security. >> >> >> > >> >> >> > Now we want to monitor the application by use of Nagios. It seems >> >> >> > that >> >> >> > Nagios doesn't support keberos. So another idea is to >> >> >> > additionally >> >> >> > set >> >> >> > basic authentication that a monitoring-user can access the page. >> >> >> > >> >> >> > My question is, can I enable basic authentication only for that >> >> >> > one >> >> >> > user? >> >> >> > Or does someone have information about Nagios running with >> >> >> > kerberos? >> >> >> > >> >> >> > Thanks a lot >> >> >> > Daniel >> >> >> > >> >> >> > >> >> > >> > > ok, think we´re gonna leave it since it is to complicated... we solved
it in the way that we enabled basic authentication just for that one ..aspx-site. That is all and it works ;) Thanks for your help Daniel Roger Abell [MVP] schrieb: Show quoteHide quote > hmmmm . . . > well, samba does teach it ot linux, but I am not sure nagios would use it > > > <danielsanber***@googlemail.com> wrote in message > news:1155719351.993941.97240@p79g2000cwp.googlegroups.com... > > hmmm, I didn't mention that our Nagios is running under Linux. We don`t > > know how to teach NTLM to Linux!? > > > > > > > > Roger Abell [MVP] schrieb: > > > >> You just need to make certain that the allowed settings for > >> NTLM in the effective group policies of both machines will > >> allow for a common version (I use NTLM v2 only) and for > >> an agreed level on NTLM communications security. > >> It is all in the local security policy, or dominating GPOs > >> security options settings. > >> > >> <danielsanber***@googlemail.com> wrote in message > >> news:1155280508.198626.91510@i42g2000cwa.googlegroups.com... > >> > yes, that is the problem! Any idea how to avoid that? > >> > > >> > Roger Abell [MVP] schrieb: > >> > > >> >> Perhaps it is that they are failing to negotiate a common > >> >> version of NTLM or of NTLM signing ? > >> >> > >> >> <danielsanber***@googlemail.com> wrote in message > >> >> news:1155215659.271331.192040@h48g2000cwc.googlegroups.com... > >> >> > Hi, > >> >> > > >> >> > we couldn't relate to that. When we access the application Nagios > >> >> > tries > >> >> > to authentificate with NLTM and that fails! > >> >> > Actually the only way, it seems to work, is with basic > >> >> > authentication! > >> >> > We couldn't find a plugin that would help us! > >> >> > > >> >> > Greetings > >> >> > Daniel > >> >> > > >> >> > jigs4u4ever schrieb: > >> >> > > >> >> >> Hi, > >> >> >> > >> >> >> To monitor the web applcation using NAGIOS there is nothing to do > >> >> >> with > >> >> >> "Intergrated windows authentication" or "kerberos", what you have > >> >> >> to > >> >> >> do > >> >> >> is > >> >> >> install the nagios windows plugins available on the Nagios site to > >> >> >> the > >> >> >> windows web server which will check for the service and site > >> >> >> avilabilty > >> >> >> at > >> >> >> specific time intervall, the plugin will act like a client and send > >> >> >> the > >> >> >> updates to the Nagios server about the service and site status. Go > >> >> >> for > >> >> >> plugin > >> >> >> as it will give you more felxiblility as u can also monitor > >> >> >> specific > >> >> >> URL > >> >> >> and > >> >> >> not only services. > >> >> >> > >> >> >> Thanks & Regards > >> >> >> Jigs4u_4ever > >> >> >> > >> >> >> "danielsanber***@googlemail.com" wrote: > >> >> >> > >> >> >> > Hi all there, > >> >> >> > > >> >> >> > we have a APS.NET 1.1 Application running on IIS 5 and SQL Server > >> >> >> > 2000. > >> >> >> > We use Integrated Windows Security. > >> >> >> > > >> >> >> > Now we want to monitor the application by use of Nagios. It seems > >> >> >> > that > >> >> >> > Nagios doesn't support keberos. So another idea is to > >> >> >> > additionally > >> >> >> > set > >> >> >> > basic authentication that a monitoring-user can access the page. > >> >> >> > > >> >> >> > My question is, can I enable basic authentication only for that > >> >> >> > one > >> >> >> > user? > >> >> >> > Or does someone have information about Nagios running with > >> >> >> > kerberos? > >> >> >> > > >> >> >> > Thanks a lot > >> >> >> > Daniel > >> >> >> > > >> >> >> > > >> >> > > >> > > > ok, think we´re gonna leave it since it is to complicated... we solved
it in the way that we enabled basic authentication just for that one ..aspx-site. That is all and it works ;) Thanks for your help Daniel Roger Abell [MVP] schrieb: Show quoteHide quote > hmmmm . . . > well, samba does teach it ot linux, but I am not sure nagios would use it > > > <danielsanber***@googlemail.com> wrote in message > news:1155719351.993941.97240@p79g2000cwp.googlegroups.com... > > hmmm, I didn't mention that our Nagios is running under Linux. We don`t > > know how to teach NTLM to Linux!? > > > > > > > > Roger Abell [MVP] schrieb: > > > >> You just need to make certain that the allowed settings for > >> NTLM in the effective group policies of both machines will > >> allow for a common version (I use NTLM v2 only) and for > >> an agreed level on NTLM communications security. > >> It is all in the local security policy, or dominating GPOs > >> security options settings. > >> > >> <danielsanber***@googlemail.com> wrote in message > >> news:1155280508.198626.91510@i42g2000cwa.googlegroups.com... > >> > yes, that is the problem! Any idea how to avoid that? > >> > > >> > Roger Abell [MVP] schrieb: > >> > > >> >> Perhaps it is that they are failing to negotiate a common > >> >> version of NTLM or of NTLM signing ? > >> >> > >> >> <danielsanber***@googlemail.com> wrote in message > >> >> news:1155215659.271331.192040@h48g2000cwc.googlegroups.com... > >> >> > Hi, > >> >> > > >> >> > we couldn't relate to that. When we access the application Nagios > >> >> > tries > >> >> > to authentificate with NLTM and that fails! > >> >> > Actually the only way, it seems to work, is with basic > >> >> > authentication! > >> >> > We couldn't find a plugin that would help us! > >> >> > > >> >> > Greetings > >> >> > Daniel > >> >> > > >> >> > jigs4u4ever schrieb: > >> >> > > >> >> >> Hi, > >> >> >> > >> >> >> To monitor the web applcation using NAGIOS there is nothing to do > >> >> >> with > >> >> >> "Intergrated windows authentication" or "kerberos", what you have > >> >> >> to > >> >> >> do > >> >> >> is > >> >> >> install the nagios windows plugins available on the Nagios site to > >> >> >> the > >> >> >> windows web server which will check for the service and site > >> >> >> avilabilty > >> >> >> at > >> >> >> specific time intervall, the plugin will act like a client and send > >> >> >> the > >> >> >> updates to the Nagios server about the service and site status. Go > >> >> >> for > >> >> >> plugin > >> >> >> as it will give you more felxiblility as u can also monitor > >> >> >> specific > >> >> >> URL > >> >> >> and > >> >> >> not only services. > >> >> >> > >> >> >> Thanks & Regards > >> >> >> Jigs4u_4ever > >> >> >> > >> >> >> "danielsanber***@googlemail.com" wrote: > >> >> >> > >> >> >> > Hi all there, > >> >> >> > > >> >> >> > we have a APS.NET 1.1 Application running on IIS 5 and SQL Server > >> >> >> > 2000. > >> >> >> > We use Integrated Windows Security. > >> >> >> > > >> >> >> > Now we want to monitor the application by use of Nagios. It seems > >> >> >> > that > >> >> >> > Nagios doesn't support keberos. So another idea is to > >> >> >> > additionally > >> >> >> > set > >> >> >> > basic authentication that a monitoring-user can access the page. > >> >> >> > > >> >> >> > My question is, can I enable basic authentication only for that > >> >> >> > one > >> >> >> > user? > >> >> >> > Or does someone have information about Nagios running with > >> >> >> > kerberos? > >> >> >> > > >> >> >> > Thanks a lot > >> >> >> > Daniel > >> >> >> > > >> >> >> > > >> >> > > >> > > > Hi,
are you talking about the Core AddOn NRPE? Greetings jigs4u4ever schrieb: Show quoteHide quote > Hi, > > To monitor the web applcation using NAGIOS there is nothing to do with > "Intergrated windows authentication" or "kerberos", what you have to do is > install the nagios windows plugins available on the Nagios site to the > windows web server which will check for the service and site avilabilty at > specific time intervall, the plugin will act like a client and send the > updates to the Nagios server about the service and site status. Go for plugin > as it will give you more felxiblility as u can also monitor specific URL and > not only services. > > Thanks & Regards > Jigs4u_4ever > > "danielsanber***@googlemail.com" wrote: > > > Hi all there, > > > > we have a APS.NET 1.1 Application running on IIS 5 and SQL Server 2000. > > We use Integrated Windows Security. > > > > Now we want to monitor the application by use of Nagios. It seems that > > Nagios doesn't support keberos. So another idea is to additionally set > > basic authentication that a monitoring-user can access the page. > > > > My question is, can I enable basic authentication only for that one > > user? > > Or does someone have information about Nagios running with kerberos? > > > > Thanks a lot > > Daniel > > > > 
Other interesting topics
Make Client Cert Required in IIS on SBS 2003?
IIS 6.0 and passwording site How do you restrict access to directory below parent dir with anon access? Domain Guests Grant Users Permissions to Modify IIS without Having Full Admin Ri User gets challenged for authentication when opening a document SSL required on non SharePoint web site automatic login with current username and password Secure FTP service? 501 errors due to Microsoft-WebDAV-MiniRedir/5.1.2600 |
|||||||||||||||||||||||
