-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Jeff,
On 9/19/12 7:38 PM, Jeff wrote: > I have a related question since we recently implemented > authentication to AD via LDAP in our Tomcat WebApp but it currently > prompts the user for every new session, even if they are hitting > the site from their windows workstation that is already > authenticated to the domain. > > Is there a way to do it that detects the user's current AD session > and eliminates the need to prompt them, preferably browser > (Chrome/FF/IE) independent? If so, it would be great! I believe this is possible, but you need your browser to be complicit by sending your Kerberos token(s). I have no idea how to do that, but I believe others on the list (André? Warnier) have done such things. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://www.enigmail.net/ iEYEARECAAYFAlBbJzoACgkQ9CaO5/Lv0PBk+wCfQgsPrw1+zbSv7KvtpyYeM5y5 X/0An2KDNsv+OXSoTI0blxpJFeDcUKvV =DiiC -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org