[27137] in Kerberos
Active Directory --> Java web app
daemon@ATHENA.MIT.EDU (Vidya Sreedharan)
Fri Dec 15 11:32:07 2006
Date: Fri, 15 Dec 2006 08:31:37 -0800 (PST)
From: Vidya Sreedharan <vidzmail@yahoo.com>
To: kerberos@mit.edu
MIME-Version: 1.0
Message-ID: <616548.23004.qm@web53208.mail.yahoo.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Hi Richard,
I have a similar requirement in my project for SSO with Active Directory . Users should be allowed to login to their Windows desktop and not have to authenticate themselves to any web apps deployed under Tomcat.
I have been doing research on this for few days. We already use JOSSO in our project for Single sign-on. But from what i read about the integration of JOSSO with Active Directory i have understood that it does not support SPNEGO. So i need to enter my user name and password even though i have already logged into my Windows Desktop. So JOSSO is not a good solution to my problem.
I also read about few third party tools like centrify, Vintela and SPNEGO SSO. But none of them are opensource. The only opensource i could find was Apache server Kerberos/SPNEGO module. Is it possible to run Apache Web server as the frontend for tomcat and make it do the authentication part and then route the requests to Tomcat. I tried searching in the net but was not able to get any useful links. I think you were also working on similar stuff. Did it work for you without problems?
Thanks
Vidya
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
