2 Replies Latest reply on Jul 10, 2007 8:49 AM by bj liu

    JBoss NegotiateKerberos  [HttpServletRequestResponseValve] R

    bj liu Newbie

      i config NegotiateKerberos at jboss
      Login as domain user, happen some error

      20:24:23,328 DEBUG [SPNEGO] CallbackHandler: org.jboss.web.tomcat.security.AdvancedWebCallbackHandler@1991e21
      20:24:23,328 DEBUG [JaasSecurityManagerService] Created securityMgr=org.jboss.security.plugins.JaasSecurityManager@189346e
      20:24:23,328 DEBUG [SPNEGO] CachePolicy set to: org.jboss.util.TimedCachePolicy@d13e3e
      20:24:23,328 DEBUG [JaasSecurityManagerService] setCachePolicy, c=org.jboss.util.TimedCachePolicy@d13e3e
      20:24:23,328 DEBUG [JaasSecurityManagerService] Added SPNEGO, org.jboss.security.plugins.SecurityDomainContext@11ff1b8 to map
      20:24:23,328 DEBUG [AdvancedWebCallbackHandler] Got SecurityAssociationCallback: org.jboss.security.auth.callback.SecurityAssociationCallback@1ac9cff
      20:24:23,328 DEBUG [AdvancedWebCallbackHandler] Sending back authorization header
      20:24:23,328 DEBUG [HttpServletRequestResponseValve] Realm returned: null
      20:24:27,546 DEBUG [AdvancedWebCallbackHandler] Got NegotiateCallback: [B@121f4ef
      20:24:27,546 DEBUG [AdvancedWebCallbackHandler] Token was Type 1 NTLM
      20:24:27,546 DEBUG [HttpServletRequestResponseValve] Realm returned: null
      20:24:27,546 DEBUG [AdvancedWebCallbackHandler] Got NegotiateCallback: [B@8c8a04
      20:24:27,546 DEBUG [AdvancedWebCallbackHandler] Token was Type 3 NTLM
      20:24:27,546 DEBUG [NegotiateLoginModule] Found NTLM token in SPNEGO: [B@8c8a04
      20:24:27,546 DEBUG [HttpServletRequestResponseValve] Realm returned: null

      login-config.xml
      <application-policy name="SPNEGO">

      <login-module code="org.jboss.security.auth.NegotiateLoginModule" flag="required">
      <module-option name="loadBalance">false</module-option>
      <module-option name="domainController">192.168.0.31</module-option>
      <module-option name="defaultDomain">TEST</module-option>
      </login-module>

      </application-policy>

      Web.xml
      <login-config>
      <auth-method>Negotiate</auth-method>
      <realm-name>Domain Realm</realm-name>
      </login-config>

      jboss-web.xml
      <jboss-web>
      <security-domain>java:/jaas/SPNEGO</security-domain>
      </jboss-web>

      context.xml