http://java.sun.com/j2se/1.5.0/docs/guide/security/jgss/single-signon.html might help you with secure authentication against AD. I use this for authentication purpose. Simple google landed me on these two wonderful pages.... maybe helpful... JAAS authentication http://java.sun.com/j2se/1.4.2/docs/guide/security/jaas/tutorials/GeneralAcnOnly.html <http://java.sun.com/j2se/1.4.2/docs/guide/security/jaas/tutorials/GeneralAcnOnly.html>JAAS authorization http://java.sun.com/j2se/1.4.2/docs/guide/security/jaas/tutorials/GeneralAcnAndAzn.html#WhatIsAzn
let me know if this suffice your question. -Sumedh On Wed, Sep 16, 2009 at 2:14 AM, sharda k <sktom...@gmail.com> wrote: > Thank you George. > > I think I need to elaborate my question further. I could bind user and > fetch > user roles using simple java class. But what I want to implement is JAAS. > The problem is based on the information provided in different web sites I > can use either LDAP or AD for both authentication and authorization. But I > need to decouple authentication and authorization. How can I implement > that? > > Any help would be appreciated. > > Sharda > > On Tue, Sep 15, 2009 at 3:19 PM, George Sexton <geor...@mhsoftware.com > >wrote: > > > AD servers run an LDAP connector. You use and LDAP API library and try to > > bind to the tree using the user's name and password for credentials. > > > > George Sexton > > MH Software, Inc. > > http://www.mhsoftware.com/ > > Voice: 303 438 9585 > > > > > > > -----Original Message----- > > > From: sharda k [mailto:sktom...@gmail.com] > > > Sent: Tuesday, September 15, 2009 2:12 PM > > > To: Tomcat Users List > > > Subject: Re: Container based authentication using LDAP and Active > > > Directory > > > > > > How can I implement LDAP to authenticate against AD? Can you please > > > elaborate? > > > I need AD for authentication and LDAP fro authorization. > > > > > > Thank you, > > > Sharda > > > > > > On Tue, Sep 15, 2009 at 3:08 PM, George Sexton > > > <geor...@mhsoftware.com>wrote: > > > > > > > You can use LDAP to authenticate against AD. > > > > > > > > George Sexton > > > > MH Software, Inc. > > > > http://www.mhsoftware.com/ > > > > Voice: 303 438 9585 > > > > > > > > > > > > > -----Original Message----- > > > > > From: sharda k [mailto:sktom...@gmail.com] > > > > > Sent: Tuesday, September 15, 2009 2:01 PM > > > > > To: users@tomcat.apache.org > > > > > Cc: sktom...@gmail.com > > > > > Subject: Container based authentication using LDAP and Active > > > Directory > > > > > > > > > > Hi, > > > > > > > > > > I want to implement Container based Authentication for a new web > > > site I > > > > > am > > > > > working on. > > > > > > > > > > The scenario that I have is: > > > > > > > > > > - User ids are being stored in LDAP > > > > > - User credentials(password) are being stored in Active > > > Directory > > > > > (AD). > > > > > - User roles are gain being stored in LDAP > > > > > > > > > > In all examples that I could find in different websites write about > > > > > LDAP > > > > > authentication in Tomcat. Is there a way we can combine both LDAP > > > and > > > > > AD for > > > > > authentication? > > > > > > > > > > Also I want to use custom login page for it. > > > > > > > > > > Any help on this would be appreciated. > > > > > > > > > > Thanks, > > > > > Sharda > > > > > > > > > > > > --------------------------------------------------------------------- > > > > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > > > > For additional commands, e-mail: users-h...@tomcat.apache.org > > > > > > > > > > > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > > For additional commands, e-mail: users-h...@tomcat.apache.org > > > > >
