You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by LERBSCHER Jean-Pierre <je...@cofiroute.fr> on 2004/09/30 09:51:17 UTC
RE : User authentication in multi repositories
Hi,
Yes, it's typically the object of the JAAS API.
You can configure the JAASRealm and develop your login modules to access
multiple LDAP services. You have to think at the rules to use to
authenticate sub-group of users in corporate domain and others in other
repository.
-----Message d'origine-----
De : QM [mailto:qm300@brandxdev.net]
Envoyé : mercredi 29 septembre 2004 23:52
À : Tomcat Users List
Objet : Re: User authentication in multi repositories
On Wed, Sep 29, 2004 at 01:50:31PM -0300, Ac?cio Furtado Costa wrote:
: We would like to know, if it is possible for an application to
authenticate
: users in multiple LDAP Services. For instance, one sub-group of users will
: authenticate on our corporate domain (Active Directory) and another
: sub-group (clients, supliers) in other repository (ADAM- Active Directory
: Application Mode, NDS, etc).
"An application," perhaps. ;)
"Tomcat's JNDI-based Realm, out of the box," likely no.
This thread came up a few weeks ago. You can search the archive for
details; the highlights boiled down to: sync'ing up your AD setups[1] or
writing custom code.
[1] = I'm not an AD expert; but I understand one offered solution
involved creating some sort of "master" AD instance that delegated to
the others on the backend.
-QM
--
software -- http://www.brandxdev.net
tech news -- http://www.RoarNetworX.com
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org