There is also a module from Quest Software, using Kerberos authentication, but it costs mega $.
Has anyone considered writing a TC realm for Kerberos? Before MS ADS came into popular use, Kerberos was a rare beast, but now it is more present. And it much better than NTLM, which is why MS started using it. Just think about it - NTLM sucked so badly that the great Behemoth, Microsoft, decided to use open standard solution. Nix. ________________________________ From: André Warnier <a...@ice-sa.com> To: Tomcat Users List <users@tomcat.apache.org> Sent: Sunday, September 13, 2009 1:33:16 PM Subject: Re: Windwos Integrated Authentication using AD and Tomcat (no prompt to the users) To Martin, Steve and others : Samba's JCIFS works fine, but only for NTLMv1 authentication. (It is also no longer maintained, see http://jcifs.samba.org.) It does NOT work for NTLMv2 authentication, which is fast becoming the norm, and the default from Vista onwards. Jespa works with NTLMv2, and is free for up to 25 users. I have no shares in ioplex or Jespa. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
