A melhor opção é mod_auth_sspi , é razoável atualizado, lançado mais recentemente em 2011.
Usei o mod_auth_sspi 1.0.4 com o apache 2.2.9 no Windows Server 2003 e funciona bem para clientes Windows XP. Eles são logados automaticamente. Aqui está minha configuração, observe que você não precisa do bit SVN, mas pode ver como restringir a grupos específicos.
# Set that only Domain Users can access this whole server
LoadModule sspi_auth_module modules/mod_auth_sspi.so
LoadModule dav_module modules/mod_dav.so
LoadModule dav_svn_module modules/mod_dav_svn.so
LoadModule authz_svn_module modules/mod_authz_svn.so
LoadModule rewrite_module modules/mod_rewrite.so
<LocationMatch />
AuthType SSPI
AuthName "Windows Authentication"
SSPIAuth On
SSPIAuthoritative On
SSPIDomain dmn.example.com
SSPIOmitDomain On
SSPIOfferBasic Off
SSPIUsernameCase lower
</LocationMatch>
<LocationMatch /trac>
Require valid-user
</LocationMatch>
# Share subversion repos under http://grp-svn:/svn/REPO_NAME
# We need developers to have read and write access and app support and prod support to have read only.
# The front office dev team also have access.
<Location /svn>
DAV svn
SVNParentPath D:\GRP-Data\svn\repos
<Limit GET PROPFIND OPTIONS REPORT CHECKOUT>
Require group "DMN\\GRP-DEV" "DMN\\GRP-SKY Production Support" "DMN\\FS_Sky_RO_DL"
</Limit>
<Limit POST PUT DELETE PROPPATCH MKCOL COPY MOVE LOCK UNLOCK VERSION-CONTROL REPORT CHECKOUT CHECKIN UNCHECKOUT MKWORKSPACE UPDATE LABEL MERGE BASELINE-CONTROL MKACTIVITY ORDERPATCH ACL PATCH SEARCH>
Require group "DMN\\GRP-DEV" "DMN\\AS_Apache FO_C_DL"
</Limit>
</Location>