Hi,
I would have thought this to be straightforward. I finally got my LDAP
authentication working properly with my JNDIRealm configured within my
container (I tried both engine and context).
In order to secure and clean things up a little, I would like to move my
JNDIRealm definition to a global resource and use it within my context, but
I can't seem to get it working.
This is what I have:
<GlobalNamingResources>
<!-- LDAP directory resource -->
<Resource name="SnoopyLDAP" auth="Container"
type="org.apache.catalina.realm.JNDIRealm"
connectionURL="ldap://snoopy.domain.com:389";
userPattern="uid={0},ou=People,dc=domain,dc=com"
roleBase="ou=Tomcat,ou=Group,dc=domain,dc=com"
roleName="cn"
roleSearch="(uniqueMember={0})"
digest="md5" />
</GlobalNamingResources>
....
<Context docBase="${catalina.home}/webapps/admin" privileged="true"
antiResourceLocking="false" antiJARLocking="false">
<ResourceLink name="users" global="SnoopyLDAP"
type="org.apache.catalina.realm.JNDIRealm"/>
</Context>
Unfortunately, this does not even open a connection to the server. Do I
need to specify it in some other manner? I checked the documentation for
the <Realm> object, but there doesn't seem to be any parameter that allows
me to link it to a global resource.
Thanks for the help!
Eric
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
