Solved

HTTPS as limited user

Posted on 2014-01-13
4
341 Views
Last Modified: 2014-01-14
Hi Experts,

This is a more general question.  I tried to run tomcat configured as HTTPS server on a limited (non admin) account on Windows 7 pro.  I got blocked by the firewall.

I'm wondering if this is always the case- i.e., is there a way to run an HTTPS server as limited user without requiring elevation to admin status on the machine to be able to get around the firewall issue?

Thanks!
Mike
0
Comment
Question by:thready
  • 2
  • 2
4 Comments
 
LVL 76

Accepted Solution

by:
arnold earned 500 total points
ID: 39778391
do you get an error that the account lacks privileges to bind to the port 443?

In a domain environment, you can using a limited user grant them rights i.e. network rights.

Are you trying to impose on this setup something that is inherent when it is run on unix/linux?
starts with as root/ and then drops privileges to run as nobody??
0
 
LVL 1

Author Comment

by:thready
ID: 39778560
This is on Windows 7 pro.  How do you assign network rights to the user out of curiosity? I found out that tomcat forces you to run as admin do I guess that is why the firewall blocks the port.  There's a popup that usually gives you the option to add the firewall an exception for public or private networks but since I'm non admin, these options were not available...
0
 
LVL 76

Expert Comment

by:arnold
ID: 39779376
I was wondering whether you are looking to run tomcat as a limied/non-admin user to mimic the functionality tomcat has when run under linux/unix.

If you do not have admin rights on the system, you can not add rights to the user.  A domain admin can assign rights to any user using GPO.

I believe it is not a firewall that denies, but the OS because tomcat is trying to bind to a restricted port (443)  The firewall alterations are needed to grant access to the port from the outside whether or not there is anything there listening.
0
 
LVL 1

Author Closing Comment

by:thready
ID: 39779403
Thanks
0

Featured Post

Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

Join & Write a Comment

Most ColdFusion developers get confused between the CFSet, Duplicate, and Structcopy methods of copying a Structure, especially which one to use when. This Article will explain the differences in the approaches with examples; therefore, after readin…
SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now