Article:		Tomcat and OpenLDAP, from Configuration to Application
Subject:		Configuring authentication for LDAP group membership
Date:		2006-06-27 07:15:29
From:		benzyp
This was a great article - concise and straightforward. I have been doing this for the past several months using Weblogic and Oblix. I need to replicate this in tomcat. The question that I have is how do I authenticate a user based on his LDAP group membership? In weblogic there is an accompanying weblogic.xml which maps the role name to the user's dn. Here is an example: <weblogic-web-app> <security-role-assignment> <role-name>System_Admin</role-name> <principal-name>System_Admin</principal-name> <principal-name>cn=System_Admin,ou=Groups, dc=sun,dc=com</principal-name> </security-role-assignment> How is this done in Tomcat? Any help is greatly appreciated.