[jboss-user] [Security & JAAS/JBoss] - Re: Negotiate with Kerberos
eric.lvyan
do-not-reply at jboss.com
Mon May 12 05:47:50 EDT 2008
I logon ok but still has exceptions like following:
16:48:49,739 TRACE [JBossSecurityMgrRealm] Begin authenticate, username=1210582129739
16:48:49,739 INFO [JBossSecurityMgrRealm] getting credentials:
======
16:48:49,739 INFO [JBossSecurityMgrRealm] securityMgr class=====class org.jboss.security.plugins.JaasSecurityManager
16:48:49,739 TRACE [SPNEGO] Begin isValid, principal:1210582129739, cache info: null
16:48:49,739 TRACE [SPNEGO] defaultLogin, principal=1210582129739
16:48:49,739 INFO [SPNEGO] Now LoginContext Class is::class javax.security.auth.login.LoginContext
16:48:49,739 ERROR [SPNEGO] Login failure
javax.security.auth.login.LoginException: Login Failure: all modules ignored
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:921)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
at javax.security.auth.login.LoginContext.login(LoginContext.java:579)
at org.jboss.security.plugins.JaasSecurityManager.defaultLogin(JaasSecurityManager.java:603)
at org.jboss.security.plugins.JaasSecurityManager.authenticate(JaasSecurityManager.java:536)
at org.jboss.security.plugins.JaasSecurityManager.isValid(JaasSecurityManager.java:345)
at org.jboss.web.tomcat.security.JBossSecurityMgrRealm.authenticate(JBossSecurityMgrRealm.java:499)
at org.jboss.web.tomcat.security.HttpServletRequestResponseValve.authenticate(HttpServletRequestResponseValve.java:64)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:490)
at org.jboss.web.tomcat.security.HttpServletRequestResponseValve.invoke(HttpServletRequestResponseValve.java:51)
at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:74)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126)
at org.apache.catalina.valves.TRACEReportValve.invoke(TRACEReportValve.java:105)
at org.jboss.web.tomcat.tc5.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:156)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:869)
at org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:664)
at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:527)
at org.apache.tomcat.util.net.MasterSlaveWorkerThread.run(MasterSlaveWorkerThread.java:112)
at java.lang.Thread.run(Thread.java:595)
16:48:49,754 TRACE [SPNEGO] End isValid, false
16:48:49,754 TRACE [JBossSecurityMgrRealm] User: 1210582129739 is NOT authenticated1111
16:48:49,754 TRACE [JBossSecurityMgrRealm] End authenticate, principal=null
16:48:49,754 TRACE [JBossSecurityMgrRealm] Begin authenticate, username=1210582129754
16:48:49,754 INFO [JBossSecurityMgrRealm] getting credentials:
======
16:48:49,754 INFO [JBossSecurityMgrRealm] securityMgr class=====class org.jboss.security.plugins.JaasSecurityManager
16:48:49,754 TRACE [SPNEGO] Begin isValid, principal:1210582129754, cache info: null
16:48:49,754 TRACE [SPNEGO] defaultLogin, principal=1210582129754
16:48:49,754 INFO [SPNEGO] Now LoginContext Class is::class javax.security.auth.login.LoginContext
16:48:49,770 TRACE [SPNEGO] defaultLogin, lc=javax.security.auth.login.LoginContext at 1c37b8f, subject=Subject(15014240).principals=jcifs.smb.NtlmPasswordAuthenti
cation at 6910705(MYDOMAIN\Administrator)org.jboss.security.SimpleGroup at 16334564(Roles(members:JBossAdmin(members:MYDOMAIN\Administrator)))
16:48:49,770 TRACE [SPNEGO] updateCache, inputSubject=Subject(15014240).principals=jcifs.smb.NtlmPasswordAuthentication at 6910705(MYDOMAIN\Administrator)org.jbos
s.security.SimpleGroup at 16334564(Roles(members:JBossAdmin(members:MYDOMAIN\Administrator))), cacheSubject=Subject(15013136).principals=jcifs.smb.NtlmPasswordAut
hentication at 6910705(MYDOMAIN\Administrator)org.jboss.security.SimpleGroup at 16334564(Roles(members:JBossAdmin(members:MYDOMAIN\Administrator)))
16:48:49,770 TRACE [SPNEGO] Inserted cache info: org.jboss.security.plugins.JaasSecurityManager$DomainInfo at 1c9f8fb[Subject(15013136).principals=jcifs.smb.NtlmPa
sswordAuthentication at 6910705(MYDOMAIN\Administrator)org.jboss.security.SimpleGroup at 16334564(Roles(members:JBossAdmin(members:MYDOMAIN\Administrator))),credent
ial.class=java.lang.String at 23370564,expirationTime=1210583906676]
16:48:49,770 TRACE [SPNEGO] End isValid, true
16:48:49,770 TRACE [JBossSecurityMgrRealm] User: 1210582129754 is authenticated
16:48:49,770 TRACE [SPNEGO] getPrincipal, cache info: org.jboss.security.plugins.JaasSecurityManager$DomainInfo at 1c9f8fb[Subject(15013136).principals=jcifs.smb.N
tlmPasswordAuthentication at 6910705(MYDOMAIN\Administrator)org.jboss.security.SimpleGroup at 16334564(Roles(members:JBossAdmin(members:MYDOMAIN\Administrator))),cr
edential.class=java.lang.String at 23370564,expirationTime=1210583906676]
16:48:49,786 TRACE [JBossSecurityMgrRealm] Mapped from input principal: 1210582129754to: 1210582129754
16:48:49,786 TRACE [SPNEGO] getUserRoles, subject: Subject:
Principal: MYDOMAIN\Administrator
Principal: Roles(members:JBossAdmin(members:MYDOMAIN\Administrator))
16:48:49,786 TRACE [JBossSecurityMgrRealm] End authenticate, principal=GenericPrincipal[1210582129754(JBossAdmin,)]
16:48:49,786 INFO [JBossSecurityMgrRealm] ======in method hasResourcePermission=====
16:48:49,786 TRACE [JBossSecurityMgrRealm] Checking roles GenericPrincipal[1210582129754(JBossAdmin,)]
16:48:49,786 TRACE [JBossSecurityMgrRealm] No role found: JBossAdmin
=================================================
BUT it seems I has logoned success?
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4150075#4150075
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4150075
More information about the jboss-user
mailing list