[jboss-user] [Security & JAAS/JBoss] - JBOSS Negotiate toolkit Secured servlet throws 403 Access de

[dufferdo25]

Hello all,
I am running jboss-portal 2.7.1 on debian 4.

I am trying to implement silent sign-on using JBOSS Negotiate using the user guide.
2.0.3.GA

I have an Active Directory 2003 dc. 

I can successfully run the basic negotiation servlet(the response is similar to what guide shows as a successful response).
I can successfully run the Security Domain Test servlet(the response is similar to what guide shows as a successful response).

When I run the Secured servlet the page returns a 403 error: Access to the requested resource has been denied.(standard ie 403 error)

I have enabled all means of logging as shown in the guide.

If I watch stdout it appears that the Secured servlet is successful as there are no errors and I get the following line (which seems to point at success):
10:52:37,268 INFO  [STDOUT] >>> Config reset default kdc MYDOMAIN.COM
10:52:37,268 INFO  [STDOUT] replay cache for test01 at MYDOMAIN.COM is null.
10:52:37,269 INFO  [STDOUT] object 0: 1243439496000/419
10:52:37,269 INFO  [STDOUT] object 0: 1243439496000/419
10:52:37,270 INFO  [STDOUT] >>> KrbApReq: authenticate succeed.
10:52:37,271 INFO  [STDOUT] Krb5Context setting peerSeqNumber to: 71953492
10:52:37,273 INFO  [STDOUT] >>> EType: sun.security.krb5.internal.crypto.ArcFourHmacEType
10:52:37,274 INFO  [STDOUT] Krb5Context setting mySeqNumber to: 1055164829
10:52:37,275 INFO  [STDOUT] 		[Krb5LoginModule]: Entering logout
10:52:37,275 INFO  [STDOUT] 		[Krb5LoginModule]: logged out Subject

test01 is a valid AD user.

Any ideas as to why the 403 as opposed to the expected output?

Thanks in advance!

View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4233670#4233670

Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4233670