This week's book giveaway is in the Servlets forum.
We're giving away four copies of Murach's Java Servlets and JSP and have Joel Murach on-line!
See this thread for details.
The moose likes Spring and the fly likes Spring Security + ldaps + JBoss Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Frameworks » Spring
Bookmark "Spring Security + ldaps + JBoss" Watch "Spring Security + ldaps + JBoss" New topic

Spring Security + ldaps + JBoss

Viggo Navarsete
Ranch Hand

Joined: Feb 02, 2009
Posts: 42

I have developed a web application using Spring security, and I have configured to use LDAP as an authentication mechanism, and I've also configured it against our internal Active Directory, all well so far.
Now our customer who wants to install our web application wants to use Novell LDAP and more specifically ldaps instead of ldap. (and port 636 instead of 389).
I have received a file with extension DER that they say I have to import into a truststore so that the communication can succeed.

Does anyone knows the steps needed in order to do this?

Some questions:
1. Can I use keytool in some way in order to import the DER (certificate?!) into a truststore? I've also read about I have to turn the DER into a PEM before it can be imported into a truststore? Any links with more information about this?
2. Do I have to configure the server.xml and add a Connector in order to achieve this? Will I have then have to use port 636 there?
3. Do I need a keystore as well?
4. Am I approaching this totally wrong?

- Spring Security 2.0.5.RELEASE
- Novell LDAP (unsure of the version here)
- A DER certificate received from customer that they tell me I have to use in order to have a successful communication with the Novell LDAP server
- JBoss 4.2.2.GA
I agree. Here's the link:
subject: Spring Security + ldaps + JBoss
Similar Threads
Directory swaping
Methods to secure web application
cannot connect to LDAP through JNDI
Https java api security
certificate format for cacerts