Re: Apache Tomcat role authorisation against AD2003

2008-04-11 Thread Mark Thomas
Rupert Whitefield wrote: Hi Mark, Thanks for your response on that. I tested both methods, and still no joy. It is as if IE can't find the main class. I should have put the complete error that I am seeing - it reads "Internet Explorer cannot download main from localhost"," Requested site unav

RE: Apache Tomcat role authorisation against AD2003

2008-04-11 Thread Rupert Whitefield
the JWS not being able to find a CERT/keystore? Again - Thanks for your time. Rupert. -Original Message- From: Mark Thomas [mailto:[EMAIL PROTECTED] Sent: 11 April 2008 15:01 To: Tomcat Users List Subject: Re: Apache Tomcat role authorisation against AD2003 Rupert Whitefield wrote

Re: Apache Tomcat role authorisation against AD2003

2008-04-11 Thread Mark Thomas
Rupert Whitefield wrote: So moved onto my next problem, which is why when securing the URL via HTTPS, everything works great , but IE can no longer 'find' the Java Web Start application. And it worked on same port with HTTP. Sigh. Looking into it. This sounds like the caching problem in IE.

RE: Apache Tomcat role authorisation against AD2003

2008-04-11 Thread Rupert Whitefield
List Subject: Re: Apache Tomcat role authorisation against AD2003 This message should be regarded as confidential. If you have received this email in error please notify the sender and destroy it immediately. Statements of intent shall only become binding when confirmed in hard copy by an a

Re: Apache Tomcat role authorisation against AD2003

2008-04-09 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Rupert, Rupert Whitefield wrote: | Thanks for the response. I think you are correct on the role definition | (could not find a way of escaping or wildcarding the role which struts | 1.1 suggests is possible) - so have worked a little more on the AD

RE: Apache Tomcat role authorisation against AD2003

2008-04-09 Thread Rupert Whitefield
eturn both the cn and DN, i.e. really twice as much role data as I need - but at least it works. Thanks again Rupert. -Original Message- From: Christopher Schultz [mailto:[EMAIL PROTECTED] Sent: 08 April 2008 15:36 To: Tomcat Users List Subject: Re: Apache Tomcat role authorisation a

Re: Apache Tomcat role authorisation against AD2003

2008-04-08 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Rupert, Rupert Whitefield wrote: |> Roles (users windows domain groups) are being returned, however the |> issue is that AD is returning the DN, and not the 'cn'. Have tried |> various values in the roleName field - but these have no effect. Are CN

Apache Tomcat role authorisation against AD2003

2008-04-07 Thread Rupert Whitefield
> All, > > Hoping that someone can help. Checked google/marc etc. Similar > posts, but no solutions?? > > Looking to authenticate & authorise Tomcat 5.5.7 against AD 2003. > > Authentication works great. Authorisation doesn't. > > Server.xml: > > >connectionURL="ldap://x.x.x.x:y