hi all,
i am pretty sure this has been hashed out many times but i could not get clear
guidelines on how to accomplish JNDI Realm + tomcat 6 + windows AD.
I have got JNDI Realm + tomcat 6 + windows AD integration with basic
authentication. as domain password is passed in clear text from browser to
tomcat server, i would like to use digest http authentication. But digest auth
is one way hash and tomcat is unable to authenticate the users against windows
AD.
Windows AD doesn't give out password ( at least from search) and so can't use
comparitive mode in JNDI look up.
So how do send user password from browser to tomcat server hashed such a way
that i could authenticate against windows AD?
One way i was thinking of MD5 the pass word on browser and tomcat authenticates
with windows AD
with MD5 scheme. So is there any setting that suggests to tomcat that do not
Md5 the password but inform the LDAP provider the auth scheme is MD5.
thanks
d.
