On Thu, 2011-12-08 at 08:49 -0800, Savitha Akella wrote: > Hi, > > I have multiple applications hosted on my tomcat server which includes web > services, web applications etc. > > To secure the web services, we made changes to server.xml ->connector
What specifically did you change in server.xml? Please also list your connector configuration and what version of Tomcat you are using. Dan > element and defined roles in tomcat-users.xml. > In the web services, we made changes in the web.xml to add the > security-constraint, security-role etc. > > However, the problem we are facing is that all the web application hosted > on the Tomcat are prompting for certificate while accessing them. > > Is there any way to restrict the security only to a single web component on > the Tomcat server rather than the entire server or all applications on the > server. > > Thanks, > Savitha
