Hello all, I am running jboss-portal 2.7.1 on debian 4. I am trying to implement silent sign-on using JBOSS Negotiate using the user guide. 2.0.3.GA
I have an Active Directory 2003 dc. I can successfully run the basic negotiation servlet(the response is similar to what guide shows as a successful response). I can successfully run the Security Domain Test servlet(the response is similar to what guide shows as a successful response). When I run the Secured servlet the page returns a 403 error: Access to the requested resource has been denied.(standard ie 403 error) I have enabled all means of logging as shown in the guide. If I watch stdout it appears that the Secured servlet is successful as there are no errors and I get the following line (which seems to point at success): 10:52:37,268 INFO [STDOUT] >>> Config reset default kdc MYDOMAIN.COM 10:52:37,268 INFO [STDOUT] replay cache for tes...@mydomain.com is null. 10:52:37,269 INFO [STDOUT] object 0: 1243439496000/419 10:52:37,269 INFO [STDOUT] object 0: 1243439496000/419 10:52:37,270 INFO [STDOUT] >>> KrbApReq: authenticate succeed. 10:52:37,271 INFO [STDOUT] Krb5Context setting peerSeqNumber to: 71953492 10:52:37,273 INFO [STDOUT] >>> EType: sun.security.krb5.internal.crypto.ArcFourHmacEType 10:52:37,274 INFO [STDOUT] Krb5Context setting mySeqNumber to: 1055164829 10:52:37,275 INFO [STDOUT] [Krb5LoginModule]: Entering logout 10:52:37,275 INFO [STDOUT] [Krb5LoginModule]: logged out Subject test01 is a valid AD user. Any ideas as to why the 403 as opposed to the expected output? Thanks in advance! View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4233670#4233670 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4233670 _______________________________________________ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
