Tomcat Basic Authentification configuration

Similar Messages

• Basic WPA configuration AP 1142n

  Hi All,
  I'm looking for a basic WPA configuration for AP1142n. This should allow connections upto 300 Mbps. Best should be a script config.
  Authentication should be local radius server.
  Thanks for your help.
  Regards,
  Christian

  Hi,
  Here is the configuration example link..
  https://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008054339e.shtml#ent
  BTW , Scott covered everything...
  Regards
  Surendra

• AS2 with basic authentification in base 64

  Hi,
  My customer would like to use the basic authentification with AS2.
  By default it seems that username & password is not encoded in base64 ? It is possible to do it ?
  Seb

  Basic authentication alone will not be a very secure communication framework. Better have basic authentication + SSL to achieve better security. Message and headers will be encrypted over SSL channel.
  Regards,
  Anuj

• Apache 2, Tomcat 5, mod_jk2 configuration problem

  I am setting up a Web Server on a RedHat Enterprise Linux box. I installed the RedHat Application Server that installs Apache 2, Tomcat 5 and Mod_JK2. I can't get the mod_jk2 configured properly. I've searched the internet and haven't found any documentation that will work with this.
  I need to know how to configure the mod_jk2 with Apache2 and Tomcat 5.
  PLEASE HELP!!! Nothing I've tried from the Internet has helped. The best site that I've found is ::
  http://www.johnturner.com/howto/apache2-tomcat4127-jk-rh9-howto.html
  but its for tomcat 4 so it doesn't work for me.
  Has anyone does this before that can help me????
  Thanks in advance.

  Ended up downloading and installing the mod_jk instead of the mod_jk2 that came with RedHat Application Server.

• Tomcat 4.1 Configuration after upgrading Java SDK

  Hi
  I have an existing Tomcat 4.1 installation which runs on Java 2 SDK 1.4.1_01. I've upgraded the SDK to 1.4.2_08. However, I can't seem to get the Tomcat 4.1 Windows service to start with the new SDK.
  What do I have to do to ensure that the Tomcat 4.1 Windows service runs with the new SDK? Do I have to reinstall Tomcat 4.1 or is there some configuration I can change?
  Thanks for the help :)
  Regards,
  Lily

  I've set the JAVA_HOME to the new JDK installation.
  However it seems that the Apache Tomcat 4.1 windows service is looking for the old JDK installation, hence the windows service is unable to start.

• Tomcat connection pooling configuration

  I have configured the datasource with connection pool as per
  http://jakarta.apache.org/tomcat/tomcat-4.1-doc/jndi-datasource-examples-howto.html
  All the required jar fles are in $CATALINA_HOME/common/lib.
  When I run my app,I am getting the following error even though commons-pool.jar file is there which contains GenericObjectPool.class file
  java.lang.NoSuchMethodError: org.apache.commons.pool.impl.GenericObjectPool: method <init>()V not found
  at org.apache.commons.dbcp.BasicDataSource.createDataSource(BasicDataSource.java:652)
  at org.apache.commons.dbcp.BasicDataSource.getConnection(BasicDataSource.java:403)
  Did anyone run into similar issue?
  Thanks

  I am running into this same issue at the moment.
  If you found the solution, it would be much appreciated if you could give me some insight into this problem.
  Thanks.

• WS-C2960S-24TS-S and WS-C2960S-24TS-S Basic Security configuration.

  Greeting's, I would like to start by apologizing. I have absolutely no knowledge in switch security management but I've been tasked with it given the shortage of personnel. I have a WS-C2960S-24TS-S and a WS-C2960S-24TS-S switch that needs to be securely configured. I've done the basic  of upgrading the firmware to the latest. Given my lack of any experience whatsoever, please include complete procedures (hand holding, I'm sorry).
  I wanted step-by-step guidance of:
  1. Locking down ports by MAC address.
  2. DDoS protection.
  3. Lock down login from all but 1 IP and only allow browser based SSL login. No TELNET, SSH or other method.
  4. Shutting down any services on the switch.
  5. Shutting down password recovery.
  Any other recommended security steps to secure the switch.
  Thanking in advance,
  Parth

  Hi Parth,
  I'm not sure if you got this figured out or not but a lot of the stuff you need can be found here: Cisco Guide to Harden Cisco IOS Devices
  Regarding the "locking down ports by MAC address", you should think about Port-security.

• Tomcat slowing down - configuration issue?

  Under the current configuration, I add new Contexts to Tomcat for each of my customers. I will be adding new customers in the future (how many, I don't know but I have 13 now).
  Each customer has their own Context with environment entries and data sources that I use to determine which database to use and where to store uploaded files and such.
  I know that it will slow Tomcat down the way I'm currently doing it as it already has.
  What would be a better way to handle this with minimum effort if at all possible?
  What about connections to the mySQL database? How would your suggestion method effect it?
  If this is the wrong forum, can you direct me to the right one for this type of issue?

  You might want to fine tune the java startup parameters
  especially -Xms and -XMx. Please see the tools documentation.

• Basic ADSL configuration on 877W

  I've just got hold of my 877W and I'm trying to configure it for home use. I've got the ADSL connection working but I'm unable to connect to the internet from the PC. The CD and PPP lights are solid and I see the RXD and TXD lights flicker. When I test the connection, everything works apart from the ping. I'm new to Cisco equipment so I'm guessing it is something fairly basic that I've missed. My config is attached. Many thanks for your help.

  i think you are missing PPPoE Client command in ATM interface > ATM0.3
  Refer this link for DSL congfiguration example:
  http://www.cisco.com/en/US/products/ps6350/products_configuration_guide_chapter09186a00804fd93f.html#wp1047623

• Basic tBridge configuration

  Hi,
  I need some help in configuring tBridge. we have WLS 8.1 in one machine and Tuxedo 8.1 server in other machine. We connect to Tuxido server from Weblogic through Jolt connection. We are planning to use tBridge with WTC for one of our requirements. Basically We want to pass messages from Tuxedo Q to JMS Q through tBridge(TuxQt2JmsQ) asynchronosly.
  My first query is can we use WTC and JOLT connector both from the same Weblogic server to connect to Tuxedo?.
  When I was trying config WTC from WLS Admin console it is asking for Local access point and Remote accee point where my remote accee point is Tuxedo listener port that I use for our jolt connection?? and My Local access point is t3://localhost:8001 ??. When I check at Tuxedo server side I can not fint any DMCONFIG or BDMCONFIG files(those are the main confiruble files I assume), where should I look for thease files exactly?
  Any help would be greatly appriciated.
  Thanks in advance
  Madhav

  Hi Madhav,
  You can use WTC and Jolt at the same time, although they will obviously be different connections. Jolt clients connect to the JSL, whereas WTC connects to the Tuxedo Domain Gateway. So to use tBridge (a component of WTC) you will need to configure a domain gateware on your Tuxedo system. As well you will need to configure WTC. For detailed information on WTC and the meaning local local access points, etc., please consult the WLS and Tuxedo documentation. In particular, read a bit about setting up domains in the Tuxedo documentation to get some background.
  If you want to try a canned set up to see how domains communication and WTC is configured, you could try the Tuxedo Control Jumpstart Kit located at:
  http://dev2dev.bea.com/pub/a/2004/02/tuxedo_jumpstart.html
  I believe it has some ant scripts that will automatically configure your WTC configuration and a simple Tuxedo application, at least on a single machine. You can then use that as a model for setting up your real environment.
  Briefly, a domain in Tuxedo terms can have local access points and remote access points. A local access point basically describes a listening point. A given Tuxedo application can have multiple local access points, although only one is required. Remote access points then describe the remote Tuxedo domain this domain should connect to. So the simplest case is on your Tuxedo system:
  Local Access Point: TUXDOM
  Local Access Point ID: TUXDOM (it doesn't have to be the same, just for convenience)
  Local Access Point Network address: //tuxhost:6010
  Remote Access Point: WLSDOM
  Remote Access Point ID: WLSDOM
  Remote Access Point Network address: //wlshost:6030
  And then basically the reverse on the WLS system in the WTC configuration:
  Local Access Point: WLSDOM
  Local Access Point ID: WLSDOM
  Local Access Point Network address: //wlshost:6030
  Remote Access Point: TUXDOM
  Remote Acess Point ID: TUXDOM
  Remote Access Point Network address: //tuxhost:6010
  That's just a start, but it should get you going.
  Regards,
  Todd Little
  BEA Tuxedo Engineering

• Basic AP1200 configuration

  Hello,
  I am looking for the simplest configuration on an AP without any vlan or sub-interfaces configuration. Really the basic configuration for an AP with :
  - 1 IP adresse
  - 1 Netmask
  - 1 Default Gateway
  Thx for any help.

  en
  #conf t
  config)#ip default-gateway x.y.z.w
  config)#int BVI1
  fig-if)#ip address x.y.z.w 255.0.0.0
  fig-if)#no shut
  fig-if)#exit
  config)#int dot11Radio0
  fig-if)#ssid test
  fig-if)#no ssid tsunami
  fig-if)#exit
  config)#exit
  #copy run start
  Then you can connect to it from the wireless side or wired side using a Web Browser and the x.y.z.w IP config for BVI and configure anything else you may want in there.
  Cheers

• WS-C2960S-24TS-S and WS-C2960X-24TS-L Basic Security configuration.

  Greeting's, I would like to start by apologizing as I would require hand-holding, given my lack of experience in Cisco (or any other switches). I have absolutely no knowledge in switch security management but I've been tasked with it given the shortage of personnel. I have a WS-C2960S-24TS-S and WS-C2960X-24TS-L switch that needs to be securely configured. I've done the basics of upgrading the firmware to the latest. Given my lack of any experience whatsoever, please include complete procedures
  I wanted step-by-step guidance of:
  1. Locking down ports by MAC address.
  2. DDoS protection.
  3. Lock down login from all but 1 IP and only allow browser based SSL login. No TELNET, SSH or other method.
  4. Shutting down any services on the switch.
  5. Shutting down password recovery.
  6. Enabling highest supported encryption for sensitive (passwords). While I'm posting this I've just read that level 7 encryption can be cracked.
  Any other recommended security steps to secure the switch.
  Thanking in advance,
  Parth

  Hello, Parth Maniar.
  1. look at the command "switchport port-security" inside interfaces (documentation: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/port_sec.pdf ).
  2. There is not much you can do for DDoS protection. Also it depend on IOS version (is your IOS lite or base). You can use a command from 1 point, also use a commands of "storm-control" (inside interface), "switchport block [type]" (inside interface), and if your IOS is not lite you can also use arp-spoofing protection and dhcp-spoofing protection.
  3. To turn off ssh and telnet:
  line vty 0 4
   transport input none
  exit
  line vty 5 15
   transport input none
  exit
  For turning off http access: no ip http server
  To limit access only from 1 IP address to HTTPS server:
  access-list 1 remark ------- ACL for HTTPS access ------------------------
  access-list 1 permit [permited IP]
  access-list 1 deny any log
  access-list 1 remark ------- END of ACL for HTTPS access -----------------
  ip http access-class 1
  And for configuration HTTPS server: http://www.cisco.com/c/en/us/td/docs/ios/termserv/command/reference/tsv_book/tsv_s1.pdf
  4. Use the command "service ?" to see all possible services for your swith. And with "no" before the command you can turn off all service that is no need for you (for example "no service dhcp").
  5. You can't shut it down because you can recover password only by rebooting switch and pushing "mode" button after this. Here is procedure for recovery password: http://www.cisco.com/c/en/us/support/docs/switches/catalyst-2950-series-switches/12040-pswdrec-2900xl.html
  After reading it you can undenstand why you can't turn it off.
  6. Yes, level 7 encryption can be cracked. So you can store your passwords as md5. You can use commands:
  enable secret [password]
  username [name] secret [password]
  After this cisco will encrypt your password by md5 hash and at configuration you'll see it as "username [name] secret 5 [md5 hash]"
  What else you can use for securety matters:
  - logging (command "login on-failure log every [numbers of fails]" must be!). Documentation: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst2960/software/release/12-2_55_se/configuration/guide/scg_2960/swlog.html
  Also you can use a configuration bellow to log all changes at configuration:
  archive
    log config
   exit
  exit
  - turn off lldp and cdp protocols to the end users sides (you can google it).
  - use SNMP for getting status of the switch and ports and analyse it for anomalies.
  - use a command inside interfaces: "spanning-tree guard root" (don't use this connamd at the ports where is connected your another switches) and "spanning-tree bpduguard enable" (use a second command if you are not planing to connect another switch to this port).
  - use a command " switchport nonegotiate" at the all ports.
  - also you can use this commands:
  no ip source-route
  ip arp proxy disable
  no ip icmp redirect

• Oracle-Java-Apache-Tomcat-JK connector configuration help...

  Windows 7 Ultimate 64-bit
  Oracle 12c
  Java 8
  Apache HTTP server 2.4.10
  Tomcat 8.0.15
  JK Connector 1.2.40
  Here are the main configuration files httpd.conf, mod_jk.conf, server.xml, and workers.properties.
  When I browse to a .jsp file, it appears to be read as html, thus not reading <jsp:include> statements as such.
  Please suggest minimum configuration.
  httpd.conf
  Define SRVROOT "/apache"
  ServerRoot "${SRVROOT}"
  Listen 80
  LoadModule actions_module modules/mod_actions.so
  LoadModule alias_module modules/mod_alias.so
  LoadModule allowmethods_module modules/mod_allowmethods.so
  LoadModule asis_module modules/mod_asis.so
  LoadModule auth_basic_module modules/mod_auth_basic.so
  LoadModule authn_core_module modules/mod_authn_core.so
  LoadModule authn_file_module modules/mod_authn_file.so
  LoadModule authz_core_module modules/mod_authz_core.so
  LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
  LoadModule authz_host_module modules/mod_authz_host.so
  LoadModule authz_user_module modules/mod_authz_user.so
  LoadModule autoindex_module modules/mod_autoindex.so
  LoadModule cgi_module modules/mod_cgi.so
  LoadModule dir_module modules/mod_dir.so
  LoadModule env_module modules/mod_env.so
  LoadModule include_module modules/mod_include.so
  LoadModule isapi_module modules/mod_isapi.so
  LoadModule log_config_module modules/mod_log_config.so
  LoadModule mime_module modules/mod_mime.so
  LoadModule negotiation_module modules/mod_negotiation.so
  LoadModule setenvif_module modules/mod_setenvif.so
  LoadModule socache_shmcb_module modules/mod_socache_shmcb.so
  LoadModule ssl_module modules/mod_ssl.so
  ServerName localhost:80
  #experimental section starts here
  #experimental section ends here
  # Virtual hosts
  NameVirtualHost *
  Include conf/mod_jk.conf
  mod_jk.conf
  LoadModule jk_module modules/mod_jk.so
  JkWorkersFile "c:/tomcat/conf/jk/workers.properties"
  JkMount /servlet/*  ajp13
  JkMount /*.jsp  ajp13
  <VirtualHost *>
  ServerName om1001001.omnisocial.com
  DocumentRoot "c:/data/fxality/java001"
  </VirtualHost>
  <VirtualHost *>
  ServerName om1001002.omnisocial.com
  DocumentRoot "c:/data/fxality/java002"
  </VirtualHost>
  <VirtualHost *>
  ServerName om1001003.omnisocial.com
  DocumentRoot "c:/data/fxality/java003"
  </VirtualHost>
  server.xml
  <?xml version='1.0' encoding='utf-8'?>
  <Server port="8005" shutdown="SHUTDOWN">
  <GlobalNamingResources>
  <Resource name="UserDatabase" auth="Container"
  type="org.apache.catalina.UserDatabase"
  description="User database that can be updated and saved"
  factory="org.apache.catalina.users.MemoryUserDatabaseFactory"
  pathname="conf/tomcat-users.xml" />
  </GlobalNamingResources>
  <Service name="Catalina">
  <Connector port="8080" protocol="HTTP/1.1" connectionTimeout="20000" redirectPort="8443" />
  <Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />
  <Engine name="Catalina" defaultHost="localhost">
  <Realm className="org.apache.catalina.realm.UserDatabaseRealm" resourceName="UserDatabase"/></Realm>
  <Host name="localhost"  appBase="webapps"/>
  <Host name="om1001001.omnisocial.com" appBase="c:/data/fxality/java001">
  <Context path="" docBase=""></Context>
  </Host>
  <Host name="om1001002.omnisocial.com" appBase="c:/data/fxality/java002">
  <Context path="" docBase=""></Context>
  </Host>
  <Host name="om1001003.omnisocial.com" appBase="c:/data/fxality/java003">
  <Context path="" docBase=""></Context>
  </Host>
  </Engine>
  </Service>
  </Server>
  workers.properties
  # BEGIN workers.properties
  # Definition for Ajp13 worker
  worker.list=ajp13
  worker.ajp13.type=ajp13
  worker.ajp13.host=localhost
  worker.ajp13.port=8009
  # END workers.properties

  I haven't studied your problem in detail and don't actually use Tomcat 6, but in earlier versions of Tomcat the handling of JNDI leaves a lot to be desired. If you search this forum for posts about Tomcat and JNDI, you will find some useful information.
  One thing I found was that you really need to use the context.xml file in your Meta-inf directory, putting the datasource anywhere else gets into one kind of trouble or another. I tried using server.xml, a context file for the application and the web-inf file.

• Apache Tomcat and Servlets configuration...

  Hi there fellow Javites,
  does anybody know how to configure the apache tomcat server xml file to enable you to use the "old servlet url technique"? I hear that its been disabled by default in newer versions Tomcat.
  You know where you would previously type in: http://localhost:8080/servlet/folder1.servlets.TheServlet
  ,but now you have to tell your web.xml file where your servlet is so you now have to type in:
  http://localhost:8080/TheServlet
  That is, unless you enable the server config file to allow you to do both.
  I hate to ask such questions but I really hate the Apache Tomcat documentation.
  Thanks.

  Hi there,
  well I was kinda hoping they'd be a shortcut to having to map the servlet in the web.xml file. In the older versions of the Apache tomcat you used to just be able to type in the url and the Servlet would be found.
  Does anybody know how to enable the later versions of Apache Tomcat via the config file to use the old style of Servlet mapping?
  I guess a more important question I should be asking also is, is this older style of mapping servlets now considered bad practice and is why it is no longer enabled by default in more recent Apache Tomcat versions???
  Thank you, this community rocks! Keep up the Javite work guys, they'll never take us alive. NO LOL. :D

• Tomcat Virtual Host Configuration on windows 2000

  Dear Reader,
  I am using Tomcat 4.1 with JDK1.4. Currently i have 3 projects.
  The navigation for these is ....
  http://localhost:9090/Shopping/
  http://localhost:9090/Bank/
  http://localhost:9090/Sample/
  Now,
  I need these links as
  http://Shopping:9090 or www.shopping.com is local system....
  http://bank:9090 or www.bank.com is local system....
  http://Sample:9090 or www.sample.com is local system....
  I am using Windows OS. Please Help
  Advance Thanks.
  Rengaraj.R

  Also should have mentioned that to get the mappings for the individual web apps (/Shopping, /bank and /Sample) after the localhost portion you need to add a context file for each web app to the tomcat configuration files (location below).
  The files will live in /tomcat/Conf/Catalina/localhost/"the name of your web app". As an example something like:
  <Context crossContext="true" docBase="/var/webapps/mybankapp" path="/bank" reloadable="true">
  </Context>
  This is placed in a file called: bank.xml
  Edited by: PaulOckleford on Jun 29, 2009 4:14 AM
  Edited by: PaulOckleford on Jun 30, 2009 2:26 AM Wrong xml file name