You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Darian Shimy <DS...@24hourfit.com> on 2003/04/01 21:08:58 UTC
RE: Anyone successfully authenticating Tomcat users w/ windows lo
gin info using a JNDIRealm?
Try this: http://www.jguru.com/faq/view.jsp?EID=1045412
--
Darian Shimy
> -----Original Message-----
> From: Tim Funk [mailto:funkman@joedog.org]
> Sent: Wednesday, March 26, 2003 11:16 AM
> To: Tomcat Users List
> Subject: Re: Anyone successfully authenticating Tomcat users
> w/ windows login info using a JNDIRealm?
>
>
> If you have multiple domains, I think your out of luck. If you run a
> single active directory domain, you *might* be able to do
> something like
> this:
>
> <Realm className="org.apache.catalina.realm.JNDIRealm" debug="99"
> connectionURL="ldap://need.morecowbell.com:389"
> userBase="dc=more,dc=morecowbell,dc=com"
> userSearch="(userPrincipalName={0})"
> userRoleName="member"
> roleBase="dc=more,dc=morecowbell,dc=com"
> roleName="cn"
> roleSearch="(member={0})"
> connectionName="cn=A_USER,cn=Users,dc=more,dc=morecowbell,dc=com"
> connectionPassword="prescription"
> roleSubtree="true"
> userSubtree="true" />
>
> To connect to active directory, you need a special user connection.
> Thats why
> connectionName="cn=A_USER,cn=Users,dc=more,dc=morecowbell,dc=com"
> is used.
>
> I hope you have better luck that I had.
>
> -Tim
>
> Dan Payne wrote:
> > I'm looking for some assistance in setting up single-sign
> on with our
> > windows 2000 intranet and Tomcat using Windows Active
> Directory and a Tomcat
> > JINDIRealm and LDAP. What I'm essentially looking for is
> > HttpServletRequest.getRemoteUser() to return the username used to
> > authenticate to the Windows network (Active Directory).
> >
> > My last post was rather vague and elicited no responses.
> I've done some more
> > research and this seems to be the way to go but it would be
> nice if anyone
> > who's already done it could relate their experiences or
> perhaps point me in
> > the right direction to some resources covering this issue.
> >
> > Thanks again,
> >
> > Dan
> >
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
>