« PSU is ahead of the pack | Main | SMTP & IPv6 »

WebAccess and IPv6

If you are IPv6-enabling a website protected by WebAccess, you might need to make a change to your web server's configuration. Specifically, you might need to set CosignCheckIP never in your Apache config. Otherwise, connections over IPv6 won't be authenticated. You can read more about why this happens in the ITS wiki.

Penn State's WebAccess product is based on CoSign, an open-source web single-sign-on system. The CoSign source code is not IPv6-clean, so even if ASET were to assign IPv6 addresses to the WebAccess servers, we'd still have problems. I'm working on a patch to CoSign to make it IPv6-clean. After the break, I'll do some more testing and submit it to the CoSign project for integration.

TrackBack

TrackBack URL for this entry:
https://blogs.psu.edu/mt-unprotected/mt-tb.cgi/7237

Post a comment

About

This page contains a single entry from the blog posted on November 19, 2007 6:08 PM.

The previous post in this blog was PSU is ahead of the pack.

The next post in this blog is SMTP & IPv6.

Many more can be found on the main index page or by looking through the archives.

Creative Commons License
This weblog is licensed under a Creative Commons License.
Powered by
Movable Type 3.33