• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

tomcat windows AD integration

 
Greenhorn
Posts: 1
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi , we are trying to do the AD integration with Tomcat 7. I have done the below , we have a AD role(Tomcat Development Test Admins) set up and I can connect and see the AD group from Jexplorer using the bind account . However I am still getting 403 when trying to logon on manager application from my user which is part of AD group.

<Realm className="org.apache.catalina.realm.JNDIRealm"
debug="99"
connectionURL="ldaps://*****:636"
referrals="follow"
connectionName="CN=Tomcatsit,OU=Services,DC=**,DC=**,DC=*****,DC=**"
connectionPassword="******"
userBase="DC=***,DC=**,DC=**,DC=**"
userSubtree="true"
userSearch="(sAMAccountName={0})"
userRoleName="memberOf"
roleBase="DC=***,DC=**,DC=**,DC=**"
roleName="cn"
roleSubtree="true"
roleSearch="(member={0})"
/>




web.xml ( manager application)
<security-constraint>
<display-name>Integration Test Admins</display-name>
<web-resource-collection>
<web-resource-name>Tomcat Development Test Admins</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>Tomcat Development Test Admins</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>

====================


 
Saloon Keeper
Posts: 27762
196
Android Eclipse IDE Tomcat Server Redhat Java Linux
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Welcome to the Ranch, Deep! You can make your XML more readable by using the "Code" button on your editor.

How are you trying to log in? I hope not by manually calling the login page.
 
reply
    Bookmark Topic Watch Topic
  • New Topic