Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

TomCat Service cannot authenticate from DMZ to AD to start TomCat Service 2008R2

Posted on 2014-02-06
4
Medium Priority
?
304 Views
Last Modified: 2014-02-15
Hi Folks,

Have a Winodws 2008R2 box in the DMZ we run Tomcat on it and it starts its service with AD Account Credentials.

What ports do I need to make this happen:

DMZ >>> INTERNAL LAN

LAN >>> DMZ
0
Comment
Question by:999
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 11

Expert Comment

by:Manjunath Sullad
ID: 39841345
Check the connectivity to Active Directory, Telnet to DC with port number 389.

telnet Servername 389, If its working fine, There is no problem with LDAP service.

Also cross verify with Server Admin who is maintaining AD,
0
 

Author Comment

by:999
ID: 39841349
Need more than LDAP, Kerberos RCP secure channel setup and password exchanges after timeouts.

I am getting closer so will post when I nail it.
0
 

Accepted Solution

by:
999 earned 0 total points
ID: 39849353
I sorted guys DNS, LDAP(U) KERBEROD and RCP(135) from DMZ to INT
0
 

Author Closing Comment

by:999
ID: 39861177
I spent an entire weekend on this trial and error reducing the number of ports required just to allow a service to authenticate with AD.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lease-to-own eliminates the expenditure of hardware replacement and allows you to pay off the server over time. Usually, this is much cheaper than leasing servers. Think of lease-to-own as credit without interest.
When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question