tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From C├ędric Couralet <cedric.coura...@gmail.com>
Subject Re: Tomcat Client Authentication
Date Wed, 20 Feb 2013 13:11:56 GMT
2013/2/20  <Maximilian-Schmidt@telekom.de>:
> Hello Cedric,
>
>>And look at the first line which could be Owner or Subject (I only have a french version
at the moment which says Propri├ętaire:)
>
> (I created another Client-Cert)
> I did it and it shows me: CN=User03, OU=Any, O=Company, L=City, ST=Something, C=DE
>
> So I wrote:
> <user username="CN=User03, OU=Any, O=Company, L=City, ST=Something, C=DE" password=""
roles="secureconn, admin"/>
>
> But still I get a 403 Error when I try to connect. Maybe this is helpful: I used a pcks12
Certificate to install it into my Browser (within Private & Public Key).
>
> Does anyone have an idea, why this doesn't work?
>

A 403 error usually means the user does not have the right role for
this resource.
You can see what is going on by putting these line at the end of your
logging.properties file :
org.apache.catalina.realm.level=DEBUG
org.apache.catalina.authenticator.level=DEBUG


And check the log file.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message