I am doing a Java EE web application that requires Single Sign On with Active Directory.
The application will no longer prompt for a username and password. The authe
This might be helpful: http://webmoli.com/2009/08/29/single-sign-on-in-java-platform/ http://appliedcrypto.com/
JCIFS NTLM is no longer supported (though it will work with NTLMv1). In my current project we have used SPNEGO as previosuly recommended.
Options 1, 2 & 3 will try to get you the server user - you might want to have a think about where this code is running & how it could interact with the client machine (hint - it can't)
SPNEGO is an open source project that provides a servlet filter that provies Integrated Windows Authentication.
if your organization uses java based web/application servers, and you prefer Kerberos/SPNEGO instead of NTLM as the authentication protocol, and you would rather have a Java Servlet Filter (JSR-53) based implementation instead of a container specific authentication module (JSR-196), and you want SSO (no username/password prompt), then this project may be of some interest to you.
It has instructions for configuring both Tomcat and Glassfish.
WAFFLE is a great solution for this. It does not need Kerberos configuration.