I'm having a really hard time configuring my tomcat to authenticate a user by my active directory information.
I've managed to get the login process correctly, but after that I get a 403 error message.
Here's my complete information:
FINE: Calling authenticate()
FINE: Authenticated 'nb18054' with type 'BASIC'
FINE: Calling accessControl()
FINE: Checking roles GenericPrincipal[nb18054()]
FINE: Username nb18054 does NOT have role Users FINE: No role found: Users
I know that the error is related to the role, but i really don't why..maybe i'm making some confusion about the role name
When I perform a search by my username (nb18054) in my active directory, I get this result:
MSDOS PROMT>dsquery user -samid nb18054
"CN=Here'sMyName, CN=Users, DC=novabase,DC=intra"
I never got LDAP authentication working with the JNDI realm, but I did have success with both JCIFS (free) and Jespa (commercial). See this thread for the filter configuration for JCIFS. Jespa's own operator manual is sufficient to get it to work.
There are also other projects like WAFFLE and Tomcatspnego but neither let me authenticate in browsers.
13:33:30,361 DEBUG [RealmBase] Checking roles GenericPrincipal[310138760()]
13:33:30,361 DEBUG [RealmBase] Username 310138760 does NOT have role code1
13:33:30,361 DEBUG [RealmBase] No role found: code1
13:33:30,361 DEBUG [AuthenticatorBase] Failed accessControl() test
I am not sure what roles needs to be given in web.xml