You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Matt Fury <ma...@what-the.net> on 2003/10/08 18:19:12 UTC
Tomcat and Active Directory
Hi All,
I've been trying for several weeks to compile
information on Tomcat and Active Directory through
LDAP. I can't quite get all the information I need and
I am hoping someone has a link to what needs to be
done. I want to use the Realms in Tomcat but I can't
seem to connect properly. For some reason it seems to
keep trying to connect to localhost even though its
not specified.
Also, does SSL NEED to be implemented in order to get
this to work? I will be doing AD connectivity through
LAN only.
Thanks.
-Matt
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
Re: Tomcat and Active Directory / 2003
Posted by Matt Fury <ma...@yahoo.com>.
Hey Thanks for the reply.
Tried all those to no avail. :-/ I did see the Tomcat
realm how-to but I was wondering if there were issues
because it is Micro$oft we're trying to connect to and
its 2003. Who knows, their "standard" ldap may not be
standard.
-Matt
--- Yann C�bron <ya...@yahoo.de> wrote:
> Two guesses:
>
> * Did you try using the IP-address instead or use
> the FQDN for
> connectionURL, maybe there's something wrong w/ DNS?
>
> * Try w/o MD5 and see if it works then.
>
> > roleSubtree="True"
>
> typo - or shouldn't this be "true"
>
> I guess you already found the documentation here:
>
http://jakarta.apache.org/tomcat/tomcat-4.1-doc/realm-howto.html#JNDIRealm
>
> HTH,
> Yann
>
> > BTW: I am using 4.1.27 on Windows 2000 and we're
> > trying to connect to a Windows 2003 AD. Has this
> > changed at all?
> >
> > here is the error trace:
> >
> > Catalina.start: LifecycleException: Exception
> opening
> > directory server connecti
> > on: javax.naming.CommunicationException:
> > localhost:389 [Root exception is java.
> > net.ConnectException: Connection refused: connect]
> > LifecycleException: Exception opening directory
> > server connection: javax.namin
> > g.CommunicationException: localhost:389 [Root
> > exception is java.net.ConnectExcep
> > tion: Connection refused: connect]
> >
> > It keeps saying localhost:389 and I clearly don't
> have
> > it in the Realm. Here is my setup.
> >
> > <Realm
> className="org.apache.catalina.realm.JNDIRealm"
> > debug="99"
> > connectionName="cn=TomcatRole,dc=vo,dc=net"
> > connectionPassword="*******"
> > connectionURL="ldap://orlmsdc001:389"
> > digest="MD5"
> > roleBase="dc=roles,dc=vo,dc=net"
> > roleName="cn"
> > roleSearch="(uniqueMember={0})"
> > roleSubtree="True"
> > userPassword="*******"
> > userPattern="cn={0},dc=vacationsonly,dc=net" />
> >
> >
> >
> > --- Matt Fury <ma...@what-the.net> wrote:
> > > Hi All,
> > >
> > > I've been trying for several weeks to compile
> > > information on Tomcat and Active Directory
> through
> > > LDAP. I can't quite get all the information I
> need
> > > and
> > > I am hoping someone has a link to what needs to
> be
> > > done. I want to use the Realms in Tomcat but I
> can't
> > > seem to connect properly. For some reason it
> seems
> > > to
> > > keep trying to connect to localhost even though
> its
> > > not specified.
> > >
> > > Also, does SSL NEED to be implemented in order
> to
> > > get
> > > this to work? I will be doing AD connectivity
> > > through
> > > LAN only.
> > >
> > > Thanks.
> > >
> > > -Matt
> > >
> > >
> >
>
---------------------------------------------------------------------
> > > To unsubscribe, e-mail:
> > > tomcat-user-unsubscribe@jakarta.apache.org
> > > For additional commands, e-mail:
> > > tomcat-user-help@jakarta.apache.org
> > >
>
>
>
>
>
---------------------------------------------------------------------
> To unsubscribe, e-mail:
> tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail:
> tomcat-user-help@jakarta.apache.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
Re: Tomcat and Active Directory / 2003
Posted by Yann C�bron <ya...@yahoo.de>.
Two guesses:
* Did you try using the IP-address instead or use the FQDN for
connectionURL, maybe there's something wrong w/ DNS?
* Try w/o MD5 and see if it works then.
> roleSubtree="True"
typo - or shouldn't this be "true"
I guess you already found the documentation here:
http://jakarta.apache.org/tomcat/tomcat-4.1-doc/realm-howto.html#JNDIRealm
HTH,
Yann
> BTW: I am using 4.1.27 on Windows 2000 and we're
> trying to connect to a Windows 2003 AD. Has this
> changed at all?
>
> here is the error trace:
>
> Catalina.start: LifecycleException: Exception opening
> directory server connecti
> on: javax.naming.CommunicationException:
> localhost:389 [Root exception is java.
> net.ConnectException: Connection refused: connect]
> LifecycleException: Exception opening directory
> server connection: javax.namin
> g.CommunicationException: localhost:389 [Root
> exception is java.net.ConnectExcep
> tion: Connection refused: connect]
>
> It keeps saying localhost:389 and I clearly don't have
> it in the Realm. Here is my setup.
>
> <Realm className="org.apache.catalina.realm.JNDIRealm"
> debug="99"
> connectionName="cn=TomcatRole,dc=vo,dc=net"
> connectionPassword="*******"
> connectionURL="ldap://orlmsdc001:389"
> digest="MD5"
> roleBase="dc=roles,dc=vo,dc=net"
> roleName="cn"
> roleSearch="(uniqueMember={0})"
> roleSubtree="True"
> userPassword="*******"
> userPattern="cn={0},dc=vacationsonly,dc=net" />
>
>
>
> --- Matt Fury <ma...@what-the.net> wrote:
> > Hi All,
> >
> > I've been trying for several weeks to compile
> > information on Tomcat and Active Directory through
> > LDAP. I can't quite get all the information I need
> > and
> > I am hoping someone has a link to what needs to be
> > done. I want to use the Realms in Tomcat but I can't
> > seem to connect properly. For some reason it seems
> > to
> > keep trying to connect to localhost even though its
> > not specified.
> >
> > Also, does SSL NEED to be implemented in order to
> > get
> > this to work? I will be doing AD connectivity
> > through
> > LAN only.
> >
> > Thanks.
> >
> > -Matt
> >
> >
> ---------------------------------------------------------------------
> > To unsubscribe, e-mail:
> > tomcat-user-unsubscribe@jakarta.apache.org
> > For additional commands, e-mail:
> > tomcat-user-help@jakarta.apache.org
> >
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
Re: Tomcat and Active Directory / 2003
Posted by Matt Fury <ma...@yahoo.com>.
BTW: I am using 4.1.27 on Windows 2000 and we're
trying to connect to a Windows 2003 AD. Has this
changed at all?
here is the error trace:
Catalina.start: LifecycleException: Exception opening
directory server connecti
on: javax.naming.CommunicationException:
localhost:389 [Root exception is java.
net.ConnectException: Connection refused: connect]
LifecycleException: Exception opening directory
server connection: javax.namin
g.CommunicationException: localhost:389 [Root
exception is java.net.ConnectExcep
tion: Connection refused: connect]
It keeps saying localhost:389 and I clearly don't have
it in the Realm. Here is my setup.
<Realm className="org.apache.catalina.realm.JNDIRealm"
debug="99"
connectionName="cn=TomcatRole,dc=vo,dc=net"
connectionPassword="*******"
connectionURL="ldap://orlmsdc001:389"
digest="MD5"
roleBase="dc=roles,dc=vo,dc=net"
roleName="cn"
roleSearch="(uniqueMember={0})"
roleSubtree="True"
userPassword="*******"
userPattern="cn={0},dc=vacationsonly,dc=net" />
--- Matt Fury <ma...@what-the.net> wrote:
> Hi All,
>
> I've been trying for several weeks to compile
> information on Tomcat and Active Directory through
> LDAP. I can't quite get all the information I need
> and
> I am hoping someone has a link to what needs to be
> done. I want to use the Realms in Tomcat but I can't
> seem to connect properly. For some reason it seems
> to
> keep trying to connect to localhost even though its
> not specified.
>
> Also, does SSL NEED to be implemented in order to
> get
> this to work? I will be doing AD connectivity
> through
> LAN only.
>
> Thanks.
>
> -Matt
>
>
---------------------------------------------------------------------
> To unsubscribe, e-mail:
> tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail:
> tomcat-user-help@jakarta.apache.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org