Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

How to configure Tomcat to use Windows NTLM authentication?

I would like to use NTLM authentication with Tomcat so that Iexplorer send automatically both the user id+pwd to webapp. Is this possible?

With "BASIC" authentication IE pops up the usual pwd dialog but I want to skip this dialog. ( Note, I use JNDIReal/ldap)

like image 993
Tom Avatar asked Jan 13 '09 14:01

Tom


People also ask

What is the authentication used by Tomcat for Integrated Windows authentication?

Built-in Tomcat support. Kerberos (the basis for integrated Windows authentication) requires careful configuration.

Is NTLM authentication same as Windows authentication?

Current applications. NTLM authentication is still supported and must be used for Windows authentication with systems configured as a member of a workgroup. NTLM authentication is also used for local logon authentication on non-domain controllers.

How do I know if NTLM is authentication is enabled?

In the Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options section, find and enable the Network Security: Restrict NTLM: Audit NTLM authentication in this domain policy and set its value to Enable all.


2 Answers

Yes, it's now possible with Waffle Tomcat Authenticator that supports Negotiate (NTLM v1, v2, etc., and Kerberos).

  • Tutorial: http://code.dblock.org/ShowPost.aspx?id=103
  • Waffle: http://dblock.github.io/waffle/

Waffle works on windows server only

like image 186
dB. Avatar answered Oct 20 '22 09:10

dB.


Yes it is. The Tomcat Wiki references a documentation about Samba code that enables Tomcat to do NTLM authentication.

The Samba community implemented a Servlet filter that allows to athenticate users agains a domain controller.

like image 4
mkoeller Avatar answered Oct 20 '22 09:10

mkoeller