Reputation: 1
Tomcat 6 manager app ldap authentication
Is it possible to map the roles defined for the tomcat 6 manager app to differently named groups in our LDAP?
In the how to doc for the manager app, it says
JNDIRealm - Your user and role information is stored in a directory server accessed via LDAP. Add the required role(s) to one or more existing users, and/or create one or more new users with the required role(s) assigned, following the standard procedures for your environment.
I've successfully set up our JNDI Realm point to our LDAP. Now, I'd like to use some existing groups for the roles. For example, rather than create a group named "manager-gui" for the role, I'd rather map the manager-gui role to a group named "serveradmins".
Are there some tweaks I can make to the web.xml for the manager app that will allow me to do this?
Upvotes: 0
Views: 1447
Answers (2)
Reputation: 310913
Turn the 'nested groups' option on and make your existing groups members of the 'manager-gui' group.
Upvotes: 0
Reputation: 16615
Yes. Change the role names in web.xml. So replace all instances of "manager-gui" with "server-admins"
Upvotes: 1
Related Questions
- Configuring Tomcat to authenticate using Windows Active Directory
- LDAP authentication in Tomcat 7, how do I bind the LDAP in server.xml?
- Tomcat 7.0.14 LDAP authentication
- Tomcat LDAP User Auth
- LDAP (JNDI Realm) authentication with apache tomcat 7
- How do I set up Tomcat with authentication in LDAP?
- Not able to login into Tomcat 7 manager App after configuring ldap authentication
- How to configure Tomcat 5.5 to authenticate against Win2003 Activedirectory(LDAP)
- Tomcat and LDAPS
- how to set up tomcat ldap authentication without member of check