tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From sigzero <sigz...@gmail.com>
Subject Re: Tomcat and LDAP (handling password expiration)
Date Fri, 06 Jan 2012 15:14:46 GMT
On Fri, Jan 6, 2012 at 10:11 AM, André Warnier <aw@ice-sa.com> wrote:
> sigzero wrote:
>>
>> The scenario is that Tomcat (6) is sitting on Windows and it talks to
>> an LDAP server sitting on Linux (RHEL). What is the best way to handle
>> the Tomcat LDAP account password expiring? I know that the password
>> needs to change on the LDAP and the Tomcat server.xml file needs to be
>> updated. I see no go way to automate that and the only workaround that
>> I see is to have the Tomcat LDAP account password not expire.
>>
> That is indeed the solution we had to get several of our customers to agree
> to.
> In general, that is a called a "service account" in sysadmin/netadmin
> parlance, and it generally means some paperwork..
>

Totally agree...security folks don't like that answer too much. I am
just doing some ground work to say "this is the way it is".

Thanks,

Bob

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message