...
This file contains the Tomcat private key for the service provider. To generate the file, run the following command as a domain administrator (all on a single line). You can do this step on the server where tomcat runs on.
Configure Apache Tomcat
Watch out: Some entries are CASE SENSITIVE! Some Path-Names need forward-slashes!
Replace / Edit krb5.ini and jaas.conf file, located in your ...\custo diagnostic server\conf Directory:
krb5.ini
Code Block |
---|
#krb5.ini
[libdefaults]
debug = true
default_realm = YOURDOMAIN.DE
dns_lookup_kdc = false
default_keytab_name = FILE:C:\Program Files\custo diagnostic server\conf\tomcat.keytab
krb4_config = /etc/krb.conf
krb4_realms = /etc/krb.realms
kdc_timesync = 1
ccache_type = 4
forwardable = true
proxiable = true
[realms]
YOURDOMAIN.DE = {
kdc = tstdc01.yourdomain.de
admin_server = tstdc01.yourdomain.de
default_domain = yourdomain.de
}
[domain_realm]
.yourdomain.de = YOURDOMAIN.DE
[login]
krb4_convert = true
krb4_get_tickets = false |
...
Code Block |
---|
com.sun.security.jgss.krb5.initiate { com.sun.security.auth.module.Krb5LoginModule required doNotPrompt=true principal="HTTP/tstsrv01tst2srv01-2016.yourdomain.de@YOURDOMAIN.DE" useKeyTab=true keyTab="C:/Program Files/custo diagnostic server/conf/tomcat.keytab" storeKey=true; }; com.sun.security.jgss.krb5.accept { com.sun.security.auth.module.Krb5LoginModule required doNotPrompt=true principal="HTTP/tstsrv01tst2srv01-2016.yourdomain.de@YOURDOMAIN.DE useKeyTab=true keyTab="C:/Program Files/custo diagnostic server/conf/tomcat.keytab" storeKey=true; }; |
...