 |
 |
>>> On 01/05/2009 at 11:46, in message <3EF77B326C82B84C95EE7A8BF39E872F0612A857@ad-bellshill>, Paul Cheyne <[log in to unmask]> wrote: > HI Matt > Thanks for the info. I changed the userSearch value but it throws up a > 403 access denied error. Full error below > HTTP Status 403 - Access to the requested resource has been denied > ________________________________ > type Status report > message Access to the requested resource has been denied > description Access to the specified resource (Access to the requested > resource has been denied) has been forbidden. > > ________________________________ > Sorry, I missed that there had been more traffic on the list about this, my earlier reply may be outdated. The 403 error I know only too well (don't I Jillian ;-) This could be it not getting through the tomcat authorisation, I expect you're not getting anything in your shibboleth logs either? What have you got at the bottom of your web.xml? It should look like: <... Some other stuff above this.... <security-role> <description>All Users</description> <role-name>person</role-name> </security-role> If you don't have this bit let me know and I'll send you my web.xml (which we know works!). Yesterday the realm config we used looked just like yours (except with samaccountname instead of uid) so that should be OK. Cheers Andy p.s. hopefully you'll get this before it goes too stale, "Janet" seems to be down at the mo :-( The University of Dundee is a registered Scottish charity, No: SC015096