OS X Server (Mountain Lion): Configuring Web realm access for Active Directory or LDAP accounts

The Web service with realms uses HTTP Digest authentication by default to provide secure access to the realms. Learn how to enable basic authentication over SSL to support user accounts defined in Active Directory or third-party LDAP Servers.
This article has been archived and is no longer updated by Apple.

You should make a backup copy of the /Library/Server/Web/Config/apache2/WebConfigProperties.plist file prior to editing it.

  1. Stop the Web service in Server app.
  2. Recommended: Acquire and install a trusted SSL certificate, then use Server app to configure Web Service to use the certificate. You can use the server's default, self-signed certificate for web access, but web browsers may warn that the certificate is "invalid".
  3. Using root access and the guidelines in How to edit configuration files, edit the /Library/Server/Web/Config/apache2/WebConfigProperties.plist .
        <key>RealmAuthType</key>
        <string>Digest</String>
    
  4. Change Digest to Basic. This makes realm access use Basic authentication, which is required for Active Directory and LDAP users.
  5. Start the Web service.

Information about products not manufactured by Apple, or independent websites not controlled or tested by Apple, is provided without recommendation or endorsement. Apple assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Apple makes no representations regarding third-party website accuracy or reliability. Contact the vendor for additional information.

Published Date: