Will,
> -----Original Message----- > From: Will Nordmeyer <[email protected]> > Sent: Tuesday, October 23, 2018 9:45 AM > To: Tomcat Users List <[email protected]> > Subject: 2 Factor Authentication Tomcat 7 > > I'm currently running Tomcat 7 (will likely migrate to 8 or 9 in the next > year). I > tried working with Oracle on this with no success. > > We have an Oracle Database connection defined within our web.xml (see > below). We need to convert to using 2 Factor (certificate?) based > Authentication. > > How do we convert from our embedded username password to 2FA > > <context-param> > <param-name>type</param-name> > <param-value>SIMPLE</param-value> > </context-param> > > <context-param> > <param-name>datasource</param-name> > <param-value> </param-value> > </context-param> > > <context-param> > <param-name>driver</param-name> > <param-value>oracle.jdbc.OracleDriver</param-value> > </context-param> > > <context-param> > <param-name>url</param-name> > <param-value>jdbc:oracle:thin:@//server:1521/SID</param-value> > </context-param> > > <context-param> > <param-name>username</param-name> > <param-value>myuser</param-value> > </context-param> > > <context-param> > <param-name>password</param-name> > <param-value>mypass</param-value> > </context-param> > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] Are you truly being asked to switch to 2FA? What is the additional factor? Like others have said, supplying something like a code from an RSA token sounds exceptionally difficult, however that's not the only possibility. You mentioned a certificate, so I'm wondering whether you're really being asked to do mutual authentication, which involves a certificate, but is not as hard as actual 2FA. Also, I assume you have some code that consumes those params from your web.xml. If so, then you might have some flexibility to change the code to do some other form of authentication. John
