Hi Richard, I have a similar requirement in my project for SSO with Active Directory . Users should be allowed to login to their Windows desktop and not have to authenticate themselves to any web apps deployed under Tomcat. I have been doing research on this for few days. We already use JOSSO in our project for Single sign-on. But from what i read about the integration of JOSSO with Active Directory i have understood that it does not support SPNEGO. So i need to enter my user name and password even though i have already logged into my Windows Desktop. So JOSSO is not a good solution to my problem. I also read about few third party tools like centrify, Vintela and SPNEGO SSO. But none of them are opensource. The only opensource i could find was Apache server Kerberos/SPNEGO module. Is it possible to run Apache Web server as the frontend for tomcat and make it do the authentication part and then route the requests to Tomcat. I tried searching in the net but was not able to get any useful links. I think you were also working on similar stuff. Did it work for you without problems? Thanks Vidya
__________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
