Technical references : Administration : Single Sign-On Planon Web Client : Apache SPNEGO implementation : Configuring web server
Configuring web server
To access Planon Web Client, you need to have the Planon role.
Open the web server’s login configuration file in a text editor. This file is named jaas.config and is located: … \Server\tomcat-*\conf
1. In the jaas.config, add the following jaas configurations at the end of the file:
com.sun.security.jgss.krb5.accept {
com.sun.security.auth.module.Krb5LoginModule required
doNotPrompt=true principal="HTTP/HostName.planon.com@PLANON.COM"
useKeyTab=true
keyTab="AbsolutePath/Server/tomcat-*/tomcat.keytab"
isInitiator=false
storeKey=true;
};
2. Update the “com.sun.security.jgss.krb5.accept” configuration with your configuration.
3. Update the server.xml located in …\Server\tomcat-*\conf. Remove the single sign on valve:
<Valve className="org.apache.catalina.authenticator.SingleSignOn" requireReauthentication="true"/>