Trying to get Windows
Authentication operational using the Tomcat Built-in method. Implemented the
following but not
observed any Windows / Kerberos authentication occuring:
-
Domain joined
windows member server
-
Domain service
account
-
Delegated SPN for
HTTP protocol on the member server to the service account
-
Generated keytab
file for the service account and saved in $catalina.base\conf folder
-
Created Valve in context.xml of className
org.apache.catalina.authenticator.SpnegoAuthenticator
-
Created krb5.ini and
saved in $catalina.base\conf folder
-
Created jaas.conf and
saved in $catalina.base\conf folder
After this still no observed
effect on logon authentications – all still apparently anonymous.
Anyone had success with this ? Any ideas on what is missing?Is there a good
way to
debug the process?
Thanks
