Return-Path: X-Original-To: apmail-tomcat-users-archive@www.apache.org Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 0C852E1CB for ; Tue, 29 Jan 2013 09:19:36 +0000 (UTC) Received: (qmail 31564 invoked by uid 500); 29 Jan 2013 09:19:32 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 31401 invoked by uid 500); 29 Jan 2013 09:19:32 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 31377 invoked by uid 99); 29 Jan 2013 09:19:31 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 29 Jan 2013 09:19:31 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of aw@ice-sa.com designates 212.85.38.228 as permitted sender) Received: from [212.85.38.228] (HELO tor.combios.es) (212.85.38.228) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 29 Jan 2013 09:19:24 +0000 Received: from [192.168.245.228] (p549E9151.dip0.t-ipconnect.de [84.158.145.81]) (Authenticated sender: andre.warnier@ice-sa.com) by tor.combios.es (Postfix) with ESMTPA id B8AAE3C0746 for ; Tue, 29 Jan 2013 10:20:31 +0100 (CET) Message-ID: <51079405.1040600@ice-sa.com> Date: Tue, 29 Jan 2013 10:19:01 +0100 From: =?UTF-8?B?QW5kcsOpIFdhcm5pZXI=?= Reply-To: Tomcat Users List User-Agent: Thunderbird 2.0.0.23 (Windows/20090812) MIME-Version: 1.0 To: Tomcat Users List Subject: Re: LDAP on TOMCAT 7.0.30 References: <1359346088550-4993107.post@n6.nabble.com> <51063F85.1030708@ice-sa.com> <51064FB8.2070904@apache.org> <1359368569936-4993116.post@n6.nabble.com> <5106987B.80109@christopherschultz.net> <5106B63D.7090701@ice-sa.com> <5106BE7A.3060506@christopherschultz.net> In-Reply-To: <5106BE7A.3060506@christopherschultz.net> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Checked: Checked by ClamAV on apache.org Christopher Schultz wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > André, > > On 1/28/13 12:32 PM, André Warnier wrote: >> Christopher Schultz wrote: >>> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 >>> >>> Chris, >>> >>> On 1/28/13 7:47 AM, chris derham wrote: >>>>> 1) All 3 applications are browser compatible and users may >>>>> use other then IE hence IE alone can be ruled out >>>> Do you mean "multiple browsers access these web applications, >>>> so we can't use anything that is IE specific"? Assuming that >>>> you do, I don't believe that anybody suggested anything that is >>>> IE specific, e.g. the SSO solutions so far posted will work in >>>> other browsers as well. Can you elaborate on what you mean >>>> exactly please? >>> I think auto-forwarding credentials from the client system >>> through the browser generally requires MSIE. I've never done >>> anything like that and have no idea what I'm talking about, so I >>> may be completely wrong. >>> >> You are. Firefox supports "Windows Integrated Authentication" fine >> too, and I believe most usual current browsers do. > > Do you need a plug-in or anything like that? Does it need to be > specifically enabled? > This may provide more details : http://markmonica.com/2007/11/20/firefox-and-integrated-windows-authentication/ or search Google for : windows integrated authentication support in firefox I am using currently Firefox v 17.0.1, and it seems to do fine right out of the box. By default, Firefox will prompt for id/pw in a dialog box anyway, even for WIA. But you can change this specifically for a list of sites, for which no prompt will be issued. (That's all under Windows of course). --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org