Alexander Diedler wrote:
Hello,
We use the IIS integrated (Windows) domain authentication, which is passed
to the Tomcat and then we check the given String with our user database in
the app and if username and password match, the user was automatically
logged in (SSO).
Ok, basically thanks.
Addendum : can you increase the log level of isapi_redirect on the IIS server, and try
again ? it may show us a bit more about what is happening.
André Warnier wrote:
Alexander Diedler wrote:
Hello,
We use the IIS integrated (Windows) domain authentication, which is
passed
to the Tomcat and
Alexander,
If you are using authorisation header, then you are using SPNGEO. This
header encodes the users group membership in the authorisation header. By
default tomcat has an 8k maximum header, whilst users belonging to many
groups can have an authorisation token that can swell to larger than