Has anyone successfully setup form-based security authentication? Have you
gotten the error page to display when the wrong username/password was
entered? What do you recommend for implementing form-based security?
Thanks in advance,
Bob
-----Original Message-----
From: McAllister, Andrew [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 16, 2001 2:02 PM
To: '[EMAIL PROTECTED]'
Subject: RE: IIS and Basic Authentication
Yes, that was it. I removed all authentication methods (except anonymous)
and it started passing the headers correctly.
I did this by selecting "Properties" on my "Default Web Site". Then I chose
"Directory Security" then "Edit" in the "Anonymous access and authentication
control." Then I unchecked the Basic and Integrated windows checkboxes. Then
restarted IIS. Worked great.
Thank you very much.
Andrew McAllister
University of Missouri
> -----Original Message-----
> From: Ignacio J. Ortega [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, January 16, 2001 11:17 AM
> To: '[EMAIL PROTECTED]'
> Subject: RE: IIS and Basic Authentication
>
>
> > Problem:
> > I'm trying to get IIS (with the isapi redirector) and
> > Tomcat to cooperate
> > on basic authentication. I've written a servlet that
> handles the basic
> > authentication correctly using the
> > req.getHeader("Authorization"); method
> > and it works well when I connect directly to Tomcat on port
> > 8080. But when I
> > connect via IIS using the redirector, it never passes the
> > authorization
> > header to the servlet.
> >
>
> Perhaps you need to completely disable IIS Basic auth, i did
> run into a
> problem that looks like yours, but i did see the headers from tomcat,
> but this was after disable the basic auth from IIS, i dont
> remember....
> but now it's working for me without problems, so i see auth
> headers from
> tomcat.
>
> FYI TC3.3 has inside a new option for the AJP12Interceptor to use with
> IIS that do not tries to read the authenticated user trought AJP12 ,
> lefting this task to Tomcat, thus doing all basic auth trought tomcat
> without problems...
>
> Saludos ,
> Ignacio J. Ortega
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, email: [EMAIL PROTECTED]
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
