Hi Tim Thanks for your input! I don't think there's a master domain, as the 4 domains are in separate business units that are only sort of logically grouped.
Does my idea about multiple LDAP connections seem valid to you? Can you sort of describe your solution? John -----Original Message----- From: Tim Funk [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 15, 2004 1:24 PM To: Tomcat Users List Subject: Re: Tomcat and Active Directory/LDAP (Multiple Domains) (LDAP Newbie) I had to roll my own Realm loosely based on JNDIRealm. Working with Active Directory, especially the way it was deploy, was so painful that regressed most of the details. I am guessing you have 4 different domains under and more generic domain. For example: ad.funkman.net westcoast.ad.funkman.net eastcoast.ad.funkman.net europe.ad.funkman.net asia.ad.funkman.net All my userid's are unique on samaccount. So to authenticate, I ask ad.funkman.net for the user. Of course - no one reside on ad.funkman.net os it issues me a referal to one of the other domains. I follow the referral and perform the authentication. I'd show some code - but can't. I'd have to recommend google for more details on implementation. -Tim John Mattos wrote: > Hi all > > > > I have a need to validate users that may exist in one of 4 Active Directory > Domains for a web-app running on Tomcat 5.x/Apache 2.x. > > > > What's the best way to accomplish this? > > > > I have read the following thread --> > http://www.mail-archive.com/[EMAIL PROTECTED]/msg130900.html > which is a good start, but doesn't address the issue of multiple domains. > > > > I also see that the JNDI tutorial is something I should read thoroughly at > --> http://java.sun.com/developer/technicalArticles/Programming/jndi/ > > > > Is there anyone who has already solved a similar problem out there or has > some brilliant idea that will help me out? > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
