Tomcat LDAP User Auth

Question

Tomcat LDAP User Auth

418 views Asked by Yanik At 23 October 2024 at 17:18

What I need to know: is it possible to authenticate my Tomcat-Users via two completly different Acitve Directories? So that my Tomcat looks for the credentials in both ADs at the same time? And if its possible, how? Can I just configure them as two realms?

What I tried: Googled a lot, didn't get a satisfying answer. Sadly I do not have a testing environment

Original Q&A

There are 3 answers

**jwilleke** · Answer 1 · 2015-06-10 12:49:01

jwilleke On 10 June 2015 at 12:49

You should try "Using CombinedRealm gives the developer the ability to combine multiple Realms of the same or different types."

https://tomcat.apache.org/tomcat-7.0-doc/realm-howto.html#CombinedRealm

**user207421** · Answer 2 · 2015-06-10 09:30:49

user207421 On 10 June 2015 at 09:30

Yes. Define a JAAS realm, with two LoginModules, either of which is 'sufficient', in the language of JAAS. Each LoginModule should talk to one of the AD servers. There's quite a bit in this, but it's doable.

**Michael-O** · Answer 3 · 2015-06-10 12:57:04

Michael-O On 10 June 2015 at 12:57

If you are in a forest or the hosts have a cross-realm trust, use Kerberos: http://tomcatspnegoad.sourceforge.net/

TechQA.

Tomcat LDAP User Auth

There are 3 answers

Related Questions in TOMCAT

Related Questions in ACTIVE-DIRECTORY

Related Questions in LDAP

Related Questions in TOMCAT7

Popular Questions

Popular Tags

Trending Questions