-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, I try to authentificate to a web App by Client.Cert. I get these error message: "HTTP Status 401 - Cannot authenticate with the provided credentials"
Here are my settings: web.xml: <security-constraint> <web-resource-collection> <web-resource-name>certLogin.jsp</web-resource-name> <url-pattern>/idp/certLogin.jsp</url-pattern> <http-method>POST</http-method> </web-resource-collection> <auth-constraint> <role-name>SourceIDuser</role-name>> </auth-constraint> </security-constraint> <login-config> <auth-method>CLIENT-CERT</auth-method> <realm-name>SourceID</realm-name> </login-config> <security-role> <description><![CDATA[SourceID Authenticated User]]></description> <role-name>SourceIDuser</role-name> </security-role> tomcat.users: <tomcat-users> <role rolename="SourceIDuser"/> <user username="[EMAIL PROTECTED]" password="null" roles="SourceIDuser"/> <user username="markus" password="test" roles="SourceIDuser"/> </tomcat-users> It works fine with Basic authentication! And it works fine with only set clientAuth="true". But I only want to secure a part of my WebApp, so clientAuth="true" is not helpful. Any help would be greatly appreciated. Markus - -- Markus Linnemann ifis - Institut fÃr Internet-Sicherheit, FH Gelsenkirchen Tel.: 0209 9596 797 www.internet-sicherheit.de -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCb5VohyPbXYfivmMRAurbAJ9SQAqlK+3SXqsYaIx9NsSBjcR6xACcCs+L rg0SJ+M1jyRtex9YDP9DBIM= =5CuL -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]