Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 47255 invoked from network); 1 Nov 2006 19:43:10 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 1 Nov 2006 19:43:10 -0000 Received: (qmail 2000 invoked by uid 500); 1 Nov 2006 19:43:06 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 1973 invoked by uid 500); 1 Nov 2006 19:43:06 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 1962 invoked by uid 99); 1 Nov 2006 19:43:06 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 01 Nov 2006 11:43:06 -0800 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: neutral (herse.apache.org: local policy) Received: from [134.58.240.45] (HELO thumbler.kulnet.kuleuven.ac.be) (134.58.240.45) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 01 Nov 2006 11:42:49 -0800 Received: from localhost (localhost [127.0.0.1]) by thumbler.kulnet.kuleuven.ac.be (Postfix) with ESMTP id B1D1613898D for ; Wed, 1 Nov 2006 20:42:27 +0100 (CET) Received: from smtps01 (octavianus.kulnet.kuleuven.ac.be [134.58.240.71]) by thumbler.kulnet.kuleuven.ac.be (Postfix) with ESMTP id CC60813896A for ; Wed, 1 Nov 2006 20:42:25 +0100 (CET) Received: from [192.168.1.3] (248.87-200-80.adsl-dyn.isp.belgacom.be [80.200.87.248]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smtps01 (Postfix) with ESMTP id A35E32E68CD for ; Wed, 1 Nov 2006 20:42:25 +0100 (CET) Message-ID: <4548F8A0.4010005@industria.be> Date: Wed, 01 Nov 2006 20:42:24 +0100 From: Velpi Organization: studentenvereniging Industria vzw User-Agent: Thunderbird 1.5.0.7 (Windows/20060909) MIME-Version: 1.0 To: Tomcat Users List Subject: Re: JNDI Realm and Active Directory root search References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by KULeuven Antivirus Cluster X-Virus-Checked: Checked by ClamAV on apache.org > When searching LDAP from the root, you will get a referral reply from AD > that has a server DNS name of JUST the domain name (ie company.com). NOT the > initial server name you used in your connectionURL. one small remark: "company.com" in your post is what you chose as root object for your AD when you installed it. I guess this is one of the reasons why MS tells you to give the machine an FQDN *before* upgrading it to a domain controller. I've already seen a few variations from people that do not use their AD for DNS (eg company.local etc). Good job ;). Have you tried setting referrals="ignore"? I would think this would mean "don't bother about referrals", but in my last attempt that didn't solve things. What's the result in your case? -- Velpi --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org