-
1. Re: Authentication against Windows 2000 from JBoss
thstory Mar 4, 2002 10:49 PM (in response to fbellameche)This link mentions authentication against NT and provides for a download. Looks like it's a login module to check NT domains, users.
http://java.sun.com/products/jaas/index-10.html -
2. Re: Authentication against Windows 2000 from JBoss
bleupen Jun 19, 2002 9:45 AM (in response to fbellameche)the link you provided is useful for propagating a client's existing NT credentials to a java application. Unfortunately, it doesn't do much for server-side authentication.
fbellameche, i would definitely look into using the JBoss LDAP LoginModule to access your Active Directory server. You may need to tweak the code a bit to account for the fact that a Win2K user's primary group is implied.
brad -
3. Re: Authentication against Windows 2000 from JBoss
bleupen Jun 19, 2002 2:54 PM (in response to fbellameche)actually, we have hit a brick wall in trying to determine a user's primary group. we can get the primary group's RID by accessing the "primaryGroupID" attribute on the user. however, converting this RID to the group's SID appears to be impossible in java. all of the solutions i have seen require the COM Active Directory SDK.
has anyone found a way to do this other than iterating over every group in the directory?
brad