This week's giveaway is in the EJB and other Java EE Technologies forum.
We're giving away four copies of EJB 3 in Action and have Debu Panda, Reza Rahman, Ryan Cuprak, and Michael Remijan on-line!
See this thread for details.
The moose likes Security and the fly likes LDAP with JNDI trouble Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "LDAP with JNDI trouble" Watch "LDAP with JNDI trouble" New topic
Author

LDAP with JNDI trouble

Ken Rubin
Ranch Hand

Joined: Mar 08, 2004
Posts: 66
Hello,

I am setting up my Tomcat JNDI realm as:

<Realm className="org.apache.catalina.realm.JNDIRealm"
connectionURL="ldap://Au-dc1:389"
connectionName="CN=Ken Rubin,OU=Development,OU=Corporate,DC=mycompany,DC=com"
connectionPassword="mallory1"
userBase="OU=Development,OU=Corporate,DC=mycompany,DC=com"
userSearch="(sAMAccountName={0})"
userSubtree="true"
userRoleName="cn"
/>

I am only able to log onto Tomcat Manager if I set
userRoleName="cn", when as an attribute = "Ken Rubin". In web.xml for the Tomcat manager, I had to
set my name as a role. ie.

web.xml
<auth-constraint>
<role-name>Ken Rubin</role-name>
</auth-constraint>
</security-constraint>

<security-role>
<role-name>Ken Rubin</role-name>
</security-role>

My directory in LDAP is at "CN=Ken Rubin,OU=Development,OU=Corporate,DC=mycompany,DC=com".

I had wished to set userRoleName="memberOf" and return the roles for me, one these roles would be in my web.xml
instead of Ken Rubin. But I have been unable to do this.

One thing I noticed is that none of our company roles have any attributes listed under them.

Also I don't know how to get the logger to give me more possible information about why I am failing.

Any help would be greatly appreciated!

Thank you,
Ken

 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: LDAP with JNDI trouble
 
Similar Threads
Configure JNDI Realm
JSP and Active Directory Integration
after JNDI realm Authentication, need further specificity on authentication
OpenLdap Authentication migration from Jboss5.1 to WebLogic 10.3.3
how to redirect to success page in tomcat using its lapd configuration