This week's book giveaway is in the OO, Patterns, UML and Refactoring forum.
We're giving away four copies of Refactoring for Software Design Smells: Managing Technical Debt and have Girish Suryanarayana, Ganesh Samarthyam & Tushar Sharma on-line!
See this thread for details.
The moose likes Security and the fly likes NT Domain authentication via JAAS & Tomcat Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


JavaRanch » Java Forums » Engineering » Security
Bookmark "NT Domain authentication via JAAS & Tomcat" Watch "NT Domain authentication via JAAS & Tomcat" New topic
Author

NT Domain authentication via JAAS & Tomcat

Patrick Tsang
Greenhorn

Joined: Aug 31, 2004
Posts: 12
I implemented the NTLoginModule via JAAS at tomcat, the information I require for authentication is username biding with domain,and password. For instance, on the logon.jsp page, the user will input
User name: "myDomain\myUsername"
Password: "myPassword"

In my cases, I meet 3 scenarios as following:

1)Logon with correct domain,username,password, PASSED
2)Logon with wrong domain, correct username, password, FAILED,
but if I logon again with correct domain,username,password, FAILED
3)Other combination, FAILED,but if logon again with the correct
credentials, PASSED.

I check all log files,and can't figure out why #2 is happen, that is,
once I logoned with a wrong domain and correct username/password,
it will fail on the subsequent logon trials.

Anybody meet the similar scenario before? Any hints are
highly appreciated.

Patrick
 
I’ve looked at a lot of different solutions, and in my humble opinion Aspose is the way to go. Here’s the link: http://aspose.com
 
subject: NT Domain authentication via JAAS & Tomcat
 
It's not a secret anymore!