documentation. I am sure someone else will need this as well (in a high security apps).
Thanks again, Edmon Begoli http://blogs.ittoolbox.com/eai/software/
Mark Thomas wrote:
Edmon Begoli wrote:
Hi,
Is it possible to enable digital certs as a authentication method for the admin app. and if yes - please tell me how.
Yes. You'll need to edit the web.xml for the admin app to change the login method.
1. Re-configure the admin app to use BASIC auth.
2. Test new config.
3. Configure the app to require SSL for everything (add a transport guarantee of CONFIDENTIAL)
4. Again, test it.
5. Change to use CLIENT-CERT rather than BASIC.
You'll need to add you user certs to the user database. If you were using tomcat-users.xml then each entry would look something like:
<user username="CN=Mark Thomas, OU=Jakarta, O=Apache, L=London, ST=None, C=GB" password="null" roles="admin"/>
Mark
Thank you, Edmon
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
