Java Mailing List Archive

http://www.junlu.com/

Home » Home (12/2007) » Tomcat Users »

Re: Tomcat and Active Directory / 2003

Yann C�bron

2003-10-08

Replies:

Two guesses:

* Did you try using the IP-address instead or use the FQDN for
connectionURL, maybe there's something wrong w/ DNS?

* Try w/o MD5 and see if it works then.

>  roleSubtree="True"

typo - or shouldn't this be "true"

I guess you already found the documentation here:
http://jakarta.apache.org/tomcat/tomcat-4.1-doc/realm-howto.html#JNDIRealm

HTH,
  Yann

> BTW: I am using 4.1.27 on Windows 2000 and we're
> trying to connect to a Windows 2003 AD. Has this
> changed at all?
>
> here is the error trace:
>
> Catalina.start: LifecycleException: Exception opening
> directory server connecti
> on: javax.naming.CommunicationException:
> localhost:389 [Root exception is java.
> net.ConnectException: Connection refused: connect]
> LifecycleException: Exception opening directory
> server connection: javax.namin
> g.CommunicationException: localhost:389 [Root
> exception is java.net.ConnectExcep
> tion: Connection refused: connect]
>
> It keeps saying localhost:389 and I clearly don't have
> it in the Realm. Here is my setup.
>
> <Realm className="org.apache.catalina.realm.JNDIRealm"
>  debug="99"
>  connectionName="cn=TomcatRole,dc=vo,dc=net"
>  connectionPassword="*******"
>  connectionURL="ldap://orlmsdc001:389"
>  digest="MD5"
>  roleBase="dc=roles,dc=vo,dc=net"
>  roleName="cn"
>  roleSearch="(uniqueMember={0})"
>  roleSubtree="True"
>  userPassword="*******"
>  userPattern="cn={0},dc=vacationsonly,dc=net" />
>
>
>
> --- Matt Fury <matty@(protected):
> > Hi All,
> >
> > I've been trying for several weeks to compile
> > information on Tomcat and Active Directory through
> > LDAP. I can't quite get all the information I need
> > and
> > I am hoping someone has a link to what needs to be
> > done. I want to use the Realms in Tomcat but I can't
> > seem to connect properly. For some reason it seems
> > to
> > keep trying to connect to localhost even though its
> > not specified.
> >
> > Also, does SSL NEED to be implemented in order to
> > get
> > this to work? I will be doing AD connectivity
> > through
> > LAN only.
> >
> > Thanks.
> >
> > -Matt
> >
> >
> ---------------------------------------------------------------------
> > To unsubscribe, e-mail:
> > tomcat-user-unsubscribe@(protected)
> > For additional commands, e-mail:
> > tomcat-user-help@(protected)
> >




---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@(protected)
For additional commands, e-mail: tomcat-user-help@(protected)


©2008 junlu.com - Jax Systems, LLC, U.S.A.