Thanks for the info. I have actually gotten this far. In the examples connectionName and connectionPassword are used and I'm trying not to put those valuse in my Realm configuration. I am able to do it by turning on anonymous logins in ADAM but I know this will not be allowed for a final solution.
Thanks On 11/29/06, Martin Gainty <[EMAIL PROTECTED]> wrote:
Would have to see your server.xml configuration for <Realm Here is an example of a successful AD entry specified in Realm be mindful that referrals="follows" must be specified "follows" to use Microsoft AD Declarative example follows here http://mail-archives.apache.org/mod_mbox/tomcat-users/200311.mbox/[EMAIL PROTECTED] Here is the javadoc for JNDIRealm (for programmatic implementation) This e-mail communication and any attachments may contain confidential and privileged information for the use of the designated recipients named above. If you are not the intended recipient, you are hereby notified that you have received this communication in error and that any review, disclosure, dissemination, distribution or copying of it or its contents ----- Original Message ----- From: "Christopher Buffington" <[EMAIL PROTECTED]> To: <users@tomcat.apache.org> Sent: Wednesday, November 29, 2006 1:54 PM Subject: Form Based Authentication : connection and bind to directory problems > I'm trying to use form based authentication with JNDIRealm to validate users > in an Active Directory Application Mode (ADAM) directory. I have a small > test app working; however, I must enable anonymous binds in ADAM or provide > the username and password in the realm element. Obviously both of these > options are not ideally secure. > > > What I want is to have the Tomcat connect and bind to the directory with the > username and password supplied in the login form. The Realms and AAA section > of the docs say this: "If these properties (connectionName and > connectionPassword) are not specified the connection is anonymous. This is > sufficient in many cases." What I run in to is that when Tomcat tries the > initial connection it fails. I then cannot connect and bind with the user > name and password supplied by the form. Does anyone know of a way to force > Tomcat to attempt the connection and bind after the failed connection > attempt? > > > Thank you > > Chris >
