Solved

HTTPS as limited user

Posted on 2014-01-13
4
347 Views
Last Modified: 2014-01-14
Hi Experts,

This is a more general question.  I tried to run tomcat configured as HTTPS server on a limited (non admin) account on Windows 7 pro.  I got blocked by the firewall.

I'm wondering if this is always the case- i.e., is there a way to run an HTTPS server as limited user without requiring elevation to admin status on the machine to be able to get around the firewall issue?

Thanks!
Mike
0
Comment
Question by:thready
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 78

Accepted Solution

by:
arnold earned 500 total points
ID: 39778391
do you get an error that the account lacks privileges to bind to the port 443?

In a domain environment, you can using a limited user grant them rights i.e. network rights.

Are you trying to impose on this setup something that is inherent when it is run on unix/linux?
starts with as root/ and then drops privileges to run as nobody??
0
 
LVL 1

Author Comment

by:thready
ID: 39778560
This is on Windows 7 pro.  How do you assign network rights to the user out of curiosity? I found out that tomcat forces you to run as admin do I guess that is why the firewall blocks the port.  There's a popup that usually gives you the option to add the firewall an exception for public or private networks but since I'm non admin, these options were not available...
0
 
LVL 78

Expert Comment

by:arnold
ID: 39779376
I was wondering whether you are looking to run tomcat as a limied/non-admin user to mimic the functionality tomcat has when run under linux/unix.

If you do not have admin rights on the system, you can not add rights to the user.  A domain admin can assign rights to any user using GPO.

I believe it is not a firewall that denies, but the OS because tomcat is trying to bind to a restricted port (443)  The firewall alterations are needed to grant access to the port from the outside whether or not there is anything there listening.
0
 
LVL 1

Author Closing Comment

by:thready
ID: 39779403
Thanks
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If your site has a few sections that need to be secure when data is transmitted between the server and local computer, such as a /order/ section for ordering or /customer/ which contains customer data, etc it would of course be recommended to secure…
It is possible to boost certain documents at query time in Solr. Query time boosting can be a powerful resource for finding the most relevant and "best" content. Of course the more information you index, the more fields you will be able to use for y…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question