-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Vicky,
On 8/6/13 10:46 PM, vicky007aggar...@yahoo.co.in wrote: > Hi All, > > Can somebody pls share the steps requires to setup active directory > with tomcat . > > Is it valid to simply define a user in the active directory ldap > without assigning any role to it ?? Will we still be able to > authenticate the user when logged in from the application.if yes > then kindly share the configuration which i need to do in web.xml > and server.xml. > > I need this because in our application we have ldap users defined > without any role mapped to them, so i want to know how to configure > this in server.xml and web.xml,so that user get authenticated > successfully I'm not sure about your LDAP configuration exactly (I've never used Tomcat with LDAP authentication myself) but Tomcat's security is entirely based upon roles. Thus, if you have (LDAP) users that are not in any group, those users are not going to be able to successfully access any resources unless you have <role-name>*</role-name> in your <auth-constraint>. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJSAcENAAoJEBzwKT+lPKRYBAMQALJSoAOrTBHBySaoMjnv+oW4 laeoVeyrTwO+E475Sk5k7Exi0hAMl13OY5vFq0SolxmiBUMR58MQwQtQhtTjWzCa mQ4/1uB3l1KpFbdfokrZdBEedJc5z4aBXFObS52P+LSvr7ypLh7heAD2IpUkOR09 To+bxSTYLBNBDerr5FnJ1d1XGq7+oGQtScfh5cSLjru6f0xVlnWljNie4ukjLCpt ULJUP8fAliqSZfcfkxgdwfnb6DPurfBiEXDTCZUofK0BsLa1blg5rO54oIRL5Kmo BtKYLBGTgL2lZQVC6m3KeTfbKb45XvZUt1xP9x2IeW8wxvAofluR5oK0G19pwqlH eUHR8D4rRaYJE24kVu9aMOhh41DLUb2FIwnoc0U/F5F23x2FA9qq4gozOsDSA2Ya eGV4Me1SxdIsf8Ouv/207k/Uh8pwRc/5ZPNntZJ0VAAg5qsJF4/IBZc1UIkusrip C48f1dBluFZAwEqwARRrSvuC1f87BasR4ZDiusR10OCmagtZdBxQuNlkb7/IKG0V cFyMbWoWFb1VCp+VNEXmp0E3Oe9n3Fnco4sa5IHIIeRi8LhoHHXlFpvGdcN/zzUK cJW/5aYTvwNiUPCaBdcT6kSp/HsimzKGa+ccwC9r62ernYOTGAxCeLkwhxVg/YVz HUuaNHoL+qMmXUFotUUw =yKmo -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
