[jboss-user] [JBoss Portal] - Using SPNEGO in jboss portal 2.7

front line do-not-reply at jboss.com
Mon Dec 6 15:30:02 EST 2010

front line [http://community.jboss.org/people/frontline2] created the discussion

"Using SPNEGO in jboss portal 2.7"

To view the discussion, visit: http://community.jboss.org/message/574594#574594

I'm trying to figure out how to use windows authentication (spnego) in jboss portal.
I get the spnego/kerberos stuff to work, ie. the portal logs the domain user in fine. But then I get errors related to the ldap user modules (they apparently can't get the user, or the password.)

I checked eg. this old thread that discussed this:
 http://community.jboss.org/message/310947#310947 http://community.jboss.org/message/310947

I don't know what the situation is currently for the negotiation module.

I found a small tutorial for using spnego in Gatein portal, but unfortunately I can't move to it.

It is apparently this part in login.config that doesn't work if not using form based authentication. How should these modules be configured to work with com.sun.security.auth.module.Krb5LoginModule (which now works for me).
What is the module named "org.jboss.security.negotiation.spnego.SPNEGOLoginModule", I really didn't see how it fits in all this.

<login-module code="org.jboss.portal.identity.auth.IdentityLoginModule" flag="optional">
               <module-option name="unauthenticatedIdentity">guest</module-option>
               <module-option name="userModuleJNDIName">java:/portal/UserModule</module-option>
               <module-option name="roleModuleJNDIName">java:/portal/RoleModule</module-option>
               <module-option name="userProfileModuleJNDIName">java:/portal/UserProfileModule</module-option>
               <module-option name="membershipModuleJNDIName">java:/portal/MembershipModule</module-option>
               <module-option name="additionalRole">Authenticated</module-option>
            <module-option name="password-stacking">useFirstPass</module-option>

Reply to this message by going to Community

Start a new discussion in JBoss Portal at Community

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20101206/b2b8314f/attachment-0001.html 

More information about the jboss-user mailing list