-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mark,
On 6/8/2010 11:25 AM, Mark-E wrote: > In the current configuration, anyone who is in LDAP can get in. > > Here is the current configuration in the server.xml > > <Realm className="org.apache.catalina.realm.JNDIRealm" > connectionName=<connection name> > connectionURL="ldap://ldap.domain.com:<port>" > roleSearch="memberUid={0}" > allRolesMode="authOnly" > userPattern="uid={0},ou=People,dc=domain,dc=com" > /> > > So I tried using userSearch=(user{1}) to allow only user1 in but that did > not limit access. I tried {1} since the docs mention that is to search for a > specific username. > > Anyone know how I need to edit this to allow only a list of specific users > in? I will define them in this file. How about creating a new group in your directory and using that instead of just "ou=People"? Maybe "ou=TomcatPeople"? - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkwOY4cACgkQ9CaO5/Lv0PCJzQCeOrdHo9ppde7A1qsaCp3dZsPV pvAAoLhbRVCuTN382T2LKZnGXnzY7ikU =hUf5 -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
