From users-return-243047-apmail-tomcat-users-archive=tomcat.apache.org@tomcat.apache.org Tue Aug 6 12:21:42 2013 Return-Path: X-Original-To: apmail-tomcat-users-archive@www.apache.org Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id D61FDFFA9 for ; Tue, 6 Aug 2013 12:21:42 +0000 (UTC) Received: (qmail 52497 invoked by uid 500); 6 Aug 2013 12:21:39 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 52443 invoked by uid 500); 6 Aug 2013 12:21:39 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 52429 invoked by uid 99); 6 Aug 2013 12:21:39 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 06 Aug 2013 12:21:39 +0000 X-ASF-Spam-Status: No, hits=3.2 required=5.0 tests=FREEMAIL_REPLY,HTML_MESSAGE,RCVD_IN_DNSWL_NONE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of mgainty@hotmail.com designates 65.55.111.100 as permitted sender) Received: from [65.55.111.100] (HELO blu0-omc2-s25.blu0.hotmail.com) (65.55.111.100) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 06 Aug 2013 12:21:32 +0000 Received: from BLU172-W3 ([65.55.111.73]) by blu0-omc2-s25.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Tue, 6 Aug 2013 05:21:11 -0700 X-TMN: [iaUYGXmBnCD/buFlRH5ZV2oiZOOLTOCc] X-Originating-Email: [mgainty@hotmail.com] Message-ID: Content-Type: multipart/alternative; boundary="_7087c5f5-4f30-4818-b180-04caf802bd3a_" From: Martin Gainty To: Tomcat Users List Subject: RE: LDAP/Realm with TLS in Tomcat 6/7? Date: Tue, 6 Aug 2013 08:21:11 -0400 Importance: Normal In-Reply-To: <5200DFC9.80009@gmail.com> References: ,<5200DFC9.80009@gmail.com> MIME-Version: 1.0 X-OriginalArrivalTime: 06 Aug 2013 12:21:11.0790 (UTC) FILETIME=[701060E0:01CE929F] X-Virus-Checked: Checked by ClamAV on apache.org --_7087c5f5-4f30-4818-b180-04caf802bd3a_ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable you will need to supply any security credentials to that layer and inform = the connector you are using protocol=3D"TLS"=20 and match each attribute to attribute from the supplied key package (.pfx/.= p7b) =20 http://tomcat.apache.org/tomcat-4.1-doc/ssl-howto.html =20 HTH=2C Martin=20 ______________________________________________=20 Verzicht und Vertraulichkeitanmerkung/Note de d=E9ni et de confidentialit= =E9 Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaeng= er sein=2C so bitten wir hoeflich um eine Mitteilung. Jede unbefugte Weiter= leitung oder Fertigung einer Kopie ist unzulaessig. Diese Nachricht dient l= ediglich dem Austausch von Informationen und entfaltet keine rechtliche Bin= dungswirkung. Aufgrund der leichten Manipulierbarkeit von E-Mails koennen w= ir keine Haftung fuer den Inhalt uebernehmen. Ce message est confidentiel et peut =EAtre privil=E9gi=E9. Si vous n'=EAtes= pas le destinataire pr=E9vu=2C nous te demandons avec bont=E9 que pour sat= isfaire informez l'exp=E9diteur. N'importe quelle diffusion non autoris=E9e= ou la copie de ceci est interdite. Ce message sert =E0 l'information seule= ment et n'aura pas n'importe quel effet l=E9galement obligatoire. =C9tant d= onn=E9 que les email peuvent facilement =EAtre sujets =E0 la manipulation= =2C nous ne pouvons accepter aucune responsabilit=E9 pour le contenu fourni= . =20 > Date: Tue=2C 6 Aug 2013 13:36:41 +0200 > From: ognjen.d.blagojevic@gmail.com > To: users@tomcat.apache.org > Subject: Re: LDAP/Realm with TLS in Tomcat 6/7? >=20 > Jens=2C >=20 > On 6.8.2013 12:44=2C Jens Neu wrote: > > is there a lib/method/whatever to achieve Realm Auth in Tomcat > 5.x wh= ere > > username/password are protected by TLS? >=20 > I never tried it myself=2C but you might find these links useful: >=20 > https://wiki.apache.org/tomcat/JNDI_startTLs_HowTo > https://issues.apache.org/bugzilla/show_bug.cgi?id=3D49785 > https://www.mail-archive.com/users@tomcat.apache.org/msg80660.html >=20 >=20 > > org.apache.catalina.realm.JNDIRealm works with Tomcat 5=2C but not in 6= :-( >=20 > JNDIRealm should work just fine in any supported Tomcat version. If you=20 > have any problems with it=2C please report it here. >=20 > BTW=2C if you are already upgrading=2C you may consider to upgrade direct= ly=20 > to latest Tomcat 7=2C to save yourself from doing two upgrades. >=20 > -Ognjen >=20 > --------------------------------------------------------------------- > To unsubscribe=2C e-mail: users-unsubscribe@tomcat.apache.org > For additional commands=2C e-mail: users-help@tomcat.apache.org >=20 = --_7087c5f5-4f30-4818-b180-04caf802bd3a_--