tomcat忽略了krb5.conf文件
[英]krb5.conf file ignored by tomcat
问题描述
I am trying to setup kerberos/spnego authentication using tomcat. 
我正在尝试使用tomcat设置kerberos / spnego身份验证。 I added a krb5.conf file under the tomcat directory and in SpnegoFilterConfig the value is read and java.security.krb5.conf is set , however it seems not to be taken in consideration. 我在tomcat目录下添加了一个krb5.conf文件,并在SpnegoFilterConfig中读取了值并设置了java.security.krb5.conf,但是似乎没有考虑到这一点。 No matter if the file is there or not i get the same result. 无论文件是否存在,我都会得到相同的结果。
javax.servlet.ServletException: GSSException: Failure unspecified at GSS-API level (Mechanism level: Encryption type AES256 CTS mode with HMAC SHA1-96 is not supported/enabled)
If i put the jce security files in lib/security i get 如果我将jce安全文件放在lib / security中,我会得到
javax.servlet.ServletException: GSSException: Failure unspecified at GSS-API level (Mechanism level: Invalid argument (400) - Cannot find key of appropriate type to decrypt AP REP - AES256 CTS mode with HMAC SHA1-96)
However this is happening no matter if i have the krb5.conf or not. 但是,无论我是否具有krb5.conf,这种情况都在发生。
1 个解决方案
解决方案1
0 2015-12-15 14:03:26
Have you replaced your security policy files with the Unlimited Strength Jurisdiction Policy Files for Java? 您是否已使用Java无限强度管辖权策略文件替换了安全策略文件?
http://www.oracle.com/technetwork/java/javase/downloads/jce8-download-2133166.html http://www.oracle.com/technetwork/java/javase/downloads/jce8-download-2133166.html
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.