; EType: sun.security.krb5.internal.crypto.Aes128CtsHmacSha1EType
replay cache for user00...@example.com is null.
object 0: 1370027872357/357663
>>> KrbApReq: authenticate succeed.
Krb5Context setting peerSeqNumber to: 758340766
Krb5Context setting mySeqNumber to: 758340766
Edward
I've tried an AES128 keytab and matching krb5.conf; this didn't get any
further.
Edward
____
From: Edward Siewick [esiew...@ementum.com]
Sent: Monday, June 10, 2013 3:31 PM
To: Tomcat Users List
Subject: RE: Tomcat7 and SPNEGO configuration questi
rb5.ASN1_BAD_ID);
141 }
This snippet is from openjdk;
http://cr.openjdk.java.net/~weijun/6966259/webrev.01/src/share/classes/sun/security/krb5/internal/KDCRep.java.html.
There's also Oracle's
http://www.docjar.com/html/api/sun/security/krb5/internal/KDCReq.java.h
@tomcat.apache.org
Subject: RE: Tomcat7 and SPNEGO configuration questions
I am in a similar situation to Edward.
My authentication says something like:
principal's key obtained from the keytab
Acquire TGT using AS Exchange
default etypes for default_tkt_enctypes: 23 18 17.
>>> Kr
Hello,
I have tomcat 8 on linux, configured with kerberos/SPNEGO authentication.
All works well, but if the client cannot use kerberos to authenticate, it
will not fallback to FORM authentication.
I see some references that tomcat 8 does not do fallback negotiation for
FORM auth. True? Any workar
On Fri, Jun 24, 2016 at 10:46 AM, Mark Thomas wrote:
> On 24 June 2016 14:22:32 BST, ken edward wrote:
> >Hello,
> >
> >I have tomcat 8 on linux, configured with kerberos/SPNEGO
> >authentication.
> >All works well, but if the client cannot use kerberos t
On Fri, Jun 24, 2016 at 11:26 AM, Mark Thomas wrote:
> On 24/06/2016 16:17, ken edward wrote:
> > On Fri, Jun 24, 2016 at 10:46 AM, Mark Thomas wrote:
> >
> >> On 24 June 2016 14:22:32 BST, ken edward wrote:
> >>> Hello,
> >>>
> >>&g
I did get it to work. Simply merged existing spnego and form auth valves
together, I will try to post later..
On Fri, Jun 24, 2016 at 6:21 PM, Terence M. Bandoian
wrote:
> On 6/24/2016 10:45 AM, ken edward wrote:
>
>> On Fri, Jun 24, 2016 at 11:26 AM, Mark Thomas wrote:
>>
&
Tried to Unsubscribe. Did not work. Can you ask Web Master to Unsubscribe me.
Thanks,
/Ed
-Original Message-
>From: André Warnier (tomcat)
>Sent: Jan 6, 2017 7:13 AM
>To: users@tomcat.apache.org
>Subject: Re: Tomcat7 under Debian dont use outgoing proxy
>
>Hi. See below.
>
>On 06.01.2017
Hello Chris,
Can you help to have Tomcat user group UN-subscribe me. I have tried to send
email but it is not UN-subscribing me.
REgards,
/Ed
-Original Message-
>From: Christopher Schultz
>Sent: Jan 12, 2017 11:55 AM
>To: Tomcat Users List
>Subject: Re: Tomcat compatibility based on OS
Hello,
I have an Idp (my ADFS) and I have a tomcat server with a simple j2ee
web application. I know I can stand up a keycloak sever, and use an
SP adapter for tomcat, BUT is there a way to simply install a tomcat
SP valve/libs that would talk to the IdP and bypass having to install
the keycloak
Hello,
I have tomcat value for authentication implemented and working
(keycloak saml tomcat adapter). but how can I implement a fallback to
form/basic authentication? Can I chain auth valves?
Ken
-
To unsubscribe, e-mail: users-
Hello,
When I deploy my war it produces the below error message, telling me
to pass the "--enable-preview". I can add the "--enable-preview" to
my tomcat start.sh script dev environment to resolve the problem.
However, if I launch the production tomcat using the jsvc binary (to
bind to port 443
at java.net.PlainSocketImpl.socketConnect(Native Method)
What's wrong with my configuration?
...
...
--
Best Regards, Edward J. Yoon
Co-founder of Twieat.Us
edwardy...@apache.org
http://blog.udanax.org
-
To unsubscribe, e-mail: user
iginal Message-
> From: Mark Thomas [mailto:ma...@apache.org]
> Sent: 17 March 2010 09:45
> To: Tomcat Users List
> Subject: Re: Doubt in tomcat session clustering
>
> On 17/03/2010 08:38, Edward J. Yoon wrote:
>> Mar 17, 2010 5:23:00 PM
>> org.apache.catalina.tribes.gr
Looking at http://tomcat.apache.org/tomcat-7.0-doc/api/index.html for more
info about org.apache.catalina.loader.WebappClassLoader and I ran up against
a bit of missing information.
The 4th implementation note mentions addJar(), which is what I wanted a bit
more info on, but addJar() is not
I have a web app that worked in version 5.5, not working in version 7.0. The
Context.xml is:
IDWMFileDirContext extend FileDirContext, IDWMClassLoader extends
WebappClassLoader. When IDWMFileDirContext is called, it is called with the
default (no arg) constructor,
Thanks for the response, lets work backwards.
3 yes
2 looked at and not applicable in this case
1 The custom classLoader is set fine and it works, except it doesnt
loader the classes from the webapp base dir, only the outside base dir.
Also, if I leave out the custom classLoader by r
ct: RE: context problem
> From: Edward W. Rouse [mailto:ero...@comsquared.com]
> Subject: context problem
> IDWMClassLoader extends WebappClassLoader.
> I have been reading to docs to try and figure out how to get both the
> normal webapp base directories and the outside the ba
I'm losing my mind here. I finally went full standard to see if the changes
in tomcat 7 would allow me to avoid custom class loaders and contexts, but
ran into a catch-22 issue.
I was getting:
java.lang.ClassCastException:
com.sun.xml.ws.transport.http.servlet.WSServletContainerInitializer
To all,
I am using Apache Tomcat 7.0.53 and I am having an intermittent issue with SSL.
I am currently running three environments (Dev, UAT, and Prod. Prod comprises
4 VMs (uname states version as "2.6.32-431.11.2.el6.x86_x86_64 GNU/Linux" )
with each containing a local version of Java [ Ja
To all,
Oh... Here is the entry in our server.xml (probably the most important part)
Users connect directly to first listed connection The second SSL port is
not currently used.
Thanks,
Lee
From: Brewer, Edward L [mailto:lee.bre...@vanderbilt.edu]
Sent: Tuesday, October 07, 2014 1
Q1: Can Tomcat be configured to 'roll back' if a patch update causes a TC
failure on a production server?
Q2: Can TC be configured to fail to a known safe state in the event of server
failure during operation?
I am developing a Security Technical Implement Guide (STIG) for Tomcat. A STIG
is
From: Willett, Jr., Edward W. (Contractor)
Sent: Tuesday, July 31, 2007 8:13 AM
To: 'users@tomcat.apache.org'
Subject: Latest MS patches
Does anyone know of any problem with Tomcat 6.0.1 and the latest MS patches.
Eddie
Come on over to my cube or just stand up so we can chat.
ED
-Original Message-
From: Gough, Nicholas D. (LNG-DAY)
[mailto:[EMAIL PROTECTED]
Sent: Wednesday, May 17, 2006 3:49 PM
To: users@tomcat.apache.org
Subject: New Tomcat user
I'm new to this, so please bear with me.
I would like
I know you mentioned that you can't use apache, but this looks like a
perfect use for Apache mod re-write. This is how I would handle it.
In response to your question. Yes, one way that this can be done is
with a web application running in tomcat. For example a Servlet or jsp
can do a redirect
101 - 126 of 126 matches
Mail list logo
