It's not a secret anymore!
The moose likes Tomcat and the fly likes JAAS Configuration gives Authontication Failure Error Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of OCA Java SE 8 Programmer I Study Guide this week in the OCAJP 8 forum!
JavaRanch » Java Forums » Products » Tomcat
Bookmark "JAAS Configuration gives Authontication Failure Error" Watch "JAAS Configuration gives Authontication Failure Error" New topic
Author

JAAS Configuration gives Authontication Failure Error

Swati Save
Greenhorn

Joined: Mar 06, 2010
Posts: 14
Hi,

I have JAAS config file as below,

dpJndi {
com.hp.ov.cwc.security.jaas.JndiLoginModule required
user.provider.url="ldap://swatsaveltd.com:389/cn=users,dc=swatsaveltd,dc=com"
security.principal="anonymous logon"
security.credentials=""
group.provider.url="ldap://swatsaveltd.com:389/ou=SECURITY GROUPS,ou=GROUPS,dc=swatsaveltd,dc=com"
security.authentication="simple"
group.search.objectClass="group"
use.samAccount.name="true"
user.search.scope=subtree_scope
group.search.scope=subtree_scope;
}

This is allowing user from a perticular OU to login. I want user from all the OUs can log in to the application (People, Group etc.). Please suggest me on what kind of changes I need to do in the file.

Also is it neccessry to put below statement in the cofiguration?
group.search.objectClass="group"


Tim Holloway
Saloon Keeper

Joined: Jun 25, 2001
Posts: 17151
    
  27

If you're using JAAS just to authenticate and authorize against an Active Directory server, that's doing things the hard way. It's much simpler just to use the JNDIRealm.

If you actually did write custom A&A code that requires JAAS to run, that's a different matter, but we're not JAAS experts here. You're better off asking questions about JAAS and its configuration in the security forum.


An IDE is no substitute for an Intelligent Developer.
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: JAAS Configuration gives Authontication Failure Error
 
It's not a secret anymore!