Hey Bill,
How did you find that one out! :)
Changed my out-of-box server.xml to use the file and it worked, thanks ever so much :)
<Connector port="8009"
enableLookups="false" redirectPort="8443" protocol="AJP/1.3" propertiesFile="conf/jk2.properties"
/>
For the benefit of this thread and anyone who finds it with similar isues, I also noticed
in the Connector documentation for 5.5.4 that you can also add a direct tomcatAuthentication
attribute to the AJP Connector which for my deferred IIS NTLM would be set to false (default
is true). In my case, I have tomcatAuthentication=false in the jk2.properties file instead
and link it, so.
All the best, Allistair.
> -----Original Message-----
> From: news [mailto:news@sea.gmane.org]On Behalf Of Bill Barker
> Sent: 12 November 2004 04:42
> To: tomcat-user@jakarta.apache.org
> Subject: Re: Tomcat 5.5.4 and Deferred IIS NTLM Authentication
>
>
> Tomcat 5.5.x doesn't use jk2.properties by default. To use
> it, you need:
> <Connector protocol="AJP/1.3"
> propertiesFile="conf/jk2.properties" ...
> />
> Alternatively you can configure it directly:
> <Connector protocol="AJP/1.3"
> request.tomcatAuthentication="false" ...
> />
>
>
> "Allistair Crossley" <Allistair.Crossley@QAS.com> wrote in message
> news:5684A7E6FB10504393A2806C1F4C021003B0E67D@orion.qas.com...
> Hi,
>
> OK, apart from my logging problem, the only other main issue
> appears to be
> that Tomcat is no longer receiving a populated
> request.getRemoteUser value.
> In Tomcat 5.0 series, we had to add the following line to
> jk2.properties
>
> request.tomcatAuthentication=false
>
> In order to instruct Tomcat to allow the web server (IIS) to
> pass through
> the NTLM-detected user name.
>
> Has anything changed (seems like it has as I only replaced
> the working
> tomcat 5.0.28 installation with 5.5.4 with no other interference)?
>
> Cheers, Allistair
>
>
> <FONT SIZE=1 FACE="VERDANA,ARIAL" COLOR=BLUE>
> -------------------------------------------------------
> QAS Ltd.
> Developers of QuickAddress Software
> <a href="http://www.qas.com">www.qas.com</a>
> Registered in England: No 2582055
> Registered in Australia: No 082 851 474
> -------------------------------------------------------
> </FONT>
>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
|