Configuring Tomcat to authenticate using Windows Active Directory?

From jspwiki.org See : ActiveDirectoryIntegration Try this in the server. Xml with your ldap-settings : Realm className="org.apache.catalina.realm. JNDIRealm" debug="99" connectionURL="ldap://youradsserver:389" alternateURL="ldap://youradsserver:389" userRoleName="member" userBase="cn=Users,dc=yourdomain" userPattern="cn={0},cn=Users,dc=yourdomain" roleBase="cn=Users,dc=yourdomain" roleName="cn" roleSearch="(member={0})" roleSubtree="false" userSubtree="true and define the role in the tomcat-users.

Xml and the web. Xml of your application edit webapp_root/WEB_INF/Web. Xml file as follows: security-constraint> your web app display name Protected Area *.

Jsp *. Html *. Xml yourrolname(ADS Group) FORM /login.

Jsp /error. Jsp your role description yourrolename(i. E ADS group).

From jspwiki.org See : ActiveDirectoryIntegration Try this in the server. Xml with your ldap-settings : and define the role in the tomcat-users. Xml and the web.

Xml of your application edit webapp_root/WEB_INF/Web. Xml file as follows: your web app display name Protected Area *. Jsp *.

Html *. Xml yourrolname(ADS Group) FORM /login. Jsp /error.

Jsp your role description yourrolename(i. E ADS group).

The link is broken – Antonio Oct 5 '10 at 14:18 New Link to jspwiki.org (Thanks Antonio) – Blauohr Oct 8 '10 at 8:23.

The LDAP based authentication works without any additional steps on any operating system. spnego.sf.net can be used for silent authentication of users logged into the Windows Domain. This needs an domain account that is registered in the domain to be authoritative for the provided service.It works on both Windows and Linux.

Blauhr's answer is good, but the CN of a user in AD is based on their "Display Name", not their saMAccountName (which user's are used to logging in with). Based on his solution, it looks like someone would have to log in with their Display Name, based on the userPattern. I've personally used the following: Everything else would pretty much work the same.

Welcome to the SPNEGO SourceForge project Integrated Windows Authentication in Java The intent of this project is to provide an alternative library (.jar file) that application servers (like Tomcat) can use as the means for authenticating clients (like web browsers). If your organization is running Active Directory (AD) and all of your web applications go through Microsoft's Internet Information Services (IIS), and IIS has Integrated Windows Authentication enabled, and everyone in your organization is using Internet Explorer (IE), then this project may not be of any interest to you.

I cant really gove you an answer,but what I can give you is a way to a solution, that is you have to find the anglde that you relate to or peaks your interest. A good paper is one that people get drawn into because it reaches them ln some way.As for me WW11 to me, I think of the holocaust and the effect it had on the survivors, their families and those who stood by and did nothing until it was too late.