thanks, found the solution. it was related to the app config. --- masro <masro@xxxxxxx> wrote: > hi, > > > Hi, > > > > We have configured reverse proxy with Apache HTTP > > server i.e user requests (via HTTPS) are recd. by > > webserver A, which are then sent (via HTTP) to > > webserver B, where they are forwarded to Tomcat. > > Now the problem, we are facing is of double > > authentication i.e once a user is authenticated > with > > 1st web server via LDAP, another login screen pops > up > > when the 1st webserver forwards to request to 2nd > web > > server. > > > > > is it really necessary that you authenticate the > user on webserver b ? > why you dont switch authentication off at this > Systeme ? how dose your > application authorize the user ( cookie, sessionid, > etc ) ? try to set > an additional http header at webserver a > RequestHeader set > "HTTP_USER_ID" "%{USER}e", user the header to > authorize the user. > > regards > > > > > > Can anyone provide some input into this or point > me to > > where more info can be found. > > > > Thanks, > > > > __________________________________________________ > > Do You Yahoo!? > > Tired of spam? Yahoo! Mail has the best spam > protection around > > http://mail.yahoo.com > > > > > --------------------------------------------------------------------- > > The official User-To-User support forum of the > Apache HTTP Server Project. > > See <URL:http://httpd.apache.org/userslist.html> > for more info. > > To unsubscribe, e-mail: > users-unsubscribe@xxxxxxxxxxxxxxxx > > " from the digest: > users-digest-unsubscribe@xxxxxxxxxxxxxxxx > > For additional commands, e-mail: > users-help@xxxxxxxxxxxxxxxx > > > > > > > --------------------------------------------------------------------- > The official User-To-User support forum of the > Apache HTTP Server Project. > See <URL:http://httpd.apache.org/userslist.html> for > more info. > To unsubscribe, e-mail: > users-unsubscribe@xxxxxxxxxxxxxxxx > " from the digest: > users-digest-unsubscribe@xxxxxxxxxxxxxxxx > For additional commands, e-mail: > users-help@xxxxxxxxxxxxxxxx > > __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx