Single Sign On using NTLMv1 or NTLMv2 or kerberos to a Spring webapp on tomcat on linux

Question

We make an appliance with a spring web interface running on Tomcat on Centos Linux.

I'm investigating how we users can connect with out entering a username/password, but instead use windows authentication over http (aka SPNEGO).

as available options mentioned in other SO questions I'm seeing:

NTLMv1 but not NTLMv2 via JCIFS
NTLMv1+NTLMv2+kerberos via Waffle but only for windows :(
Kerberos only via "Spring Security Kerberos Extension"

none of which sounds like a reliable all around SSO option for tomcat on Centos. also much of the information on these projects is over a year old so it's hard to know if these limits still apply.

What is a viable option for SSO on linux these days?

score 1 · Answer 1 · answered Feb 28 '12 at 18:45

1

Another option might be the "ntlmv2-auth" Java library:

https://sourceforge.net/projects/ntlmv2auth/

It also includes an SSO servlet filter.

answered Feb 28 '12 at 18:45

user1223709

21
2

score 0 · Accepted Answer · answered Jul 09 '11 at 14:36

0

Option three works perfectly here with Spring 3.0. Go for it!

answered Jul 09 '11 at 14:36

Michael-O

18,123
6
55
121

Single Sign On using NTLMv1 or NTLMv2 or kerberos to a Spring webapp on tomcat on linux

2 Answers2