Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

tomcat authentication configuration

Posted on 2013-01-22
8
Medium Priority
?
240 Views
Last Modified: 2013-02-06
Hi:

I am testing an application on my own pc and find that there are a few links from the soruce code are not displayed for me. I don't have the same problem when I run the application on the production server.

It seems to me the production server uses my windows login for authentication and grant me permission to these a few links on the web page, because when I try to open the web page, I am asked for userid and password. My login id is shown on the web page as well.

When I import the application under local tomcat and try to view the web page, I am not asked for my login. I find the login shown as "null" and these a few links are not displayed on the web page.

What is the easiest way to fix this issue? Thanks.
0
Comment
Question by:sdc248
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 37

Expert Comment

by:ArneLovius
ID: 38810059
I would suggest going through the tomcat configuration on the production server and seing where your configuration differs, if both configurations are the same, it could be that there is configuration stored within the application that is specific to the production server, this could a connection to an AD server over LDAPS that you are blocked from accessing...
0
 

Author Comment

by:sdc248
ID: 38812416
I have found a web.xml and a dwr.xml file under WEB-INF folder. The web.xml file defines some <security-constraint> items that allow certain user groups in the company to access certain web pages.  After copy it under Root\WEB-INF folder of tomcat, I am now getting prompted for login information, but my totally legitimate login fails to pass.

So looks like my login will be authenticated by production server by looking up some personnel database?  Anyway I can change this configuration so I can test my project locally?

Thanks.
0
 
LVL 37

Expert Comment

by:ArneLovius
ID: 38812585
quite possibly, but the authentication method could be stored in a file or in a database.

if you are testing this application, are you not able to ask the developers ?
0
ATEN's HDBaseT Presentation at InfoComm 2017

Hear ATEN Product Manager YT Liang review HDBaseT technology, highlighting ATEN’s latest solutions as they relate to real-world applications during her presentation at the HDBaseT booth at InfoComm 2017.

 

Author Comment

by:sdc248
ID: 38815152
The logins are verified using Active Directory.
0
 
LVL 37

Expert Comment

by:ArneLovius
ID: 38815358
Authenticating against AD doesn't tell you how it authenticates against AD

Most authentication using AD as a backend is done with LDAP or LDAPS

Are you able to bind to AD LDAP from your computer, to test I would suggest the Apache Directory Studio.

It could however be using RADIUS, RADIUS requires that RADIUS client (in this case the server running tomcat) to be configured on the RADIUS server with a shared secret.
0
 

Author Comment

by:sdc248
ID: 38831930
I'd like to test to see if I could bind to AD LDAP from my local pc. Could you please elaborate more about how to do that, or provide a link to somewhere onlin perhaps? I have downloaded the Apache Directory Studio.

Thanks.
0
 
LVL 37

Accepted Solution

by:
ArneLovius earned 1000 total points
ID: 38832449
Configure the DC name and the credentials to use...

Softerra LDAP browser is an alternative
0
 

Author Closing Comment

by:sdc248
ID: 38860274
I solved the problem by moving the project to another server, which for some reason authenciate correctly. Thank you for your help though I didn't have a chance to work it out.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If your site has a few sections that need to be secure when data is transmitted between the server and local computer, such as a /order/ section for ordering or /customer/ which contains customer data, etc it would of course be recommended to secure…
Introduction This article is the first of three articles that explain why and how the Experts Exchange QA Team does test automation for our web site. This article explains our test automation goals. Then rationale is given for the tools we use to a…
Viewers will learn about the different types of variables in Java and how to declare them. Decide the type of variable desired: Put the keyword corresponding to the type of variable in front of the variable name: Use the equal sign to assign a v…
This tutorial explains how to use the VisualVM tool for the Java platform application. This video goes into detail on the Threads, Sampler, and Profiler tabs.
Suggested Courses

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question