|
| ecbldap.jar authentication issue here |
 |
Sat, 04 Aug 2007 18:11:29 GMT |
Hi,
We are using eDirectory as our directory server and use sso for
authentication with eDirectory and we use ecbldap.jar novell based jndi and
jar files to authenticate against ldap, manager.class and loginmanager.class
and others.
Everything was working fine with tomcat 4 and jdk 1.4. When we try to
upgrade to tomcat 5.5.20 and jsk 1.5. We get strange error where when sso
tries to authenticate against ldap with port 636. We get jass policy not
configured for sso. Initial connection is made by
cess: access allowed (java.lang.RuntimePermission getProtectionDomain)
access: access allowed (java.lang.RuntimePermission getProtectionDomain)
access: access allowed (java.lang.RuntimePermission getProtectionDomain)
access: access allowed (java.util.PropertyPermission
com.sun.net.ssl.requireCloseNotify read)
access: access allowed (java.net.SocketPermission 172.17.90.238:636
connect,resolve)
access: access allowed (java.net.SocketPermission 172.17.90.238:636
connect,resolve)
access: access allowed (java.net.NetPermission getProxySelector)
access: access allowed (java.net.SocketPermission ldaphost resolve)
But when we authenticate at he runtime on the jsp page. we get
app Policy Classes get ID sso
No JAAS Policy class for webapp 'sso' has been registered
access: access denied (java.security.SecurityPermission
insertProvider.SunJSSE)
java.lang.Exception: Stack trace
com.novell.ecb.CommandException: access denied
(java.security.SecurityPermission insertProvider.SunJSSE)
at
com.novell.ecb.security.RetrieveHostCertificates.retrieveHostCertificates(Retrie
veHostCertificates.java:126)
at
com.novell.ecb.security.RetrieveHostCertificates.execute(RetrieveHostCertificate
s.java:85)
at
com.scb.sso.service.LdapManager.setupSSLCert(LdapManager.java:135)
at com.scb.sso.service.LdapManager.init(LdapManager.java:66)
at com.scb.sso.service.LdapManager.<init>(LdapManager.java:61)
at com.scb.sso.service.LdapManager.getInstance(LdapManager.java:52)
at
com.scb.sso.service.LoginManager.isScbPerson(LoginManager.java:110)
at
org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:697)
at
org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:889
)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:68
4)
at java.lang.Thread.run(Thread.java:595)
[error] Time:2007-07-30 12:25 Class:LdapManager User: Message:access denied
(java.security.SecurityPermission insertProvider.SunJSSE)
Could it be a problem with ecbldap.jar. When the connection is made while
starting the, application is able to establish a connection but only during
the runtime that is when we authenticate we get this issue.
Please help
Regards
Venk
|
| Post Reply
|
| Re: ecbldap.jar authentication issue here |
 |
Sat, 04 Aug 2007 20:56:23 GMT |
Hi Venk,
"Venk" <gokulnath.baskaran@in.standardchartered.com> wrote in
news:lj3ti.2506$q16.530@prv-forum2.provo.novell.com:
> We are using eDirectory as our directory server and use sso for
> authentication with eDirectory and we use ecbldap.jar novell based jndi
> and jar files to authenticate against ldap, manager.class and
> loginmanager.class and others.
[snip]
> Please help
you're posting in the wrong forum here, and I think you know that;
you posted same already in the ldap forum, and when you dont get an answer
within _one_ day then that's no reason to start posting into any forum;
the reason that you get no answer is probably that nobody knows an answer,
and not that nobody reads your question. Also you missed to post important
information to your problem, f.e. on what platform you're running eDir.
Please add this information to your initial thread in the ldap forum, and be
a bit more patient.
thanks, Gün.
|
| Post Reply
|
|
|
|
|
|
|
|
|
|