-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Jen,
On 9/20/12 11:19 AM, Mead, Jen L wrote: > I met you at a PERL conference years and years ago along with a > bunch of other people you met. Unlikely... I've never been to a Perl conference. [OT NB: I've found out that I'm not the only Christopher Schultz in the world -- even in my own local region. I got pulled-over for speeding one time and was told that my license had been suspended *and* revoked (I'm not sure how that's different than just being revoked, but what the hey). Anyhow, turns out that the state I was living in used soundex codes for driver's license numbers and another (apparently evil) Christopher Schultz and I had license numbers differing only by one digit, so the cop had it all wrong. Fun ride.] > Anyways. Exactly what I am trying to do is allow folks to use > their web browser (I would like to stick with tomcat 7.0.27 on aix > 6.1) from their windows workstation and authenticate against the > windows domain. Ok. > I am hoping this can be accomplished without creating unix > accounts. Mirroring AD in UNIX would be foolish. It wouldn't get you anywhere, anyway, since Tomcat doesn't have a module to authenticate against the local UNIX environment, anyway. > The permissions for it, page access or run the tool would reside in > the tomcat configuration side, but all authentication would be from > the windows side. So you want your clients to provide Kerberos tokens to Tomcat? Have you arranged for that kind of thing? - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://www.enigmail.net/ iEYEARECAAYFAlBbO0QACgkQ9CaO5/Lv0PATtwCgg8Lqf2fu+NXSDHY6h+IKg8ag rMwAnjH2bKM7P+DvmjDYQJ+tU/WyAwjw =ylwm -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
