Reputation: 143
Tomcat LDAP User Auth
What I need to know: is it possible to authenticate my Tomcat-Users via two completly different Acitve Directories? So that my Tomcat looks for the credentials in both ADs at the same time? And if its possible, how? Can I just configure them as two realms?
What I tried: Googled a lot, didn't get a satisfying answer. Sadly I do not have a testing environment
Upvotes: 0
Views: 515
Answers (3)
Reputation: 18415
If you are in a forest or the hosts have a cross-realm trust, use Kerberos: http://tomcatspnegoad.sourceforge.net/
Upvotes: 1
Reputation: 11056
You should try "Using CombinedRealm gives the developer the ability to combine multiple Realms of the same or different types."
https://tomcat.apache.org/tomcat-7.0-doc/realm-howto.html#CombinedRealm
Upvotes: 1
Reputation: 311052
Yes. Define a JAAS realm, with two LoginModules, either of which is 'sufficient', in the language of JAAS. Each LoginModule should talk to one of the AD servers. There's quite a bit in this, but it's doable.
Upvotes: 1
Related Questions
- Configuring Tomcat to authenticate using Windows Active Directory
- LDAP authentication in Tomcat 7, how do I bind the LDAP in server.xml?
- Tomcat 7.0.14 LDAP authentication
- Setup Tomcat to use LDAP user from a specific group
- LDAP (JNDI Realm) authentication with apache tomcat 7
- How do I set up Tomcat with authentication in LDAP?
- Authentication by using Tomcat LDAPs and PHP
- How to configure Tomcat 5.5 to authenticate against Win2003 Activedirectory(LDAP)
- Tomcat and LDAPS
- how to set up tomcat ldap authentication without member of check