Active Directory-Based Single Sign-On for Apache Tomcat

The following plugins are now EOL and are not being actively developed. They will no longer be supported as of May 30th, 2018: 

Apache Httpd - ADFS 
Apache Tomcat - All 
Jboss - All 
WebSphere - All 
WebLogic All 
SAP Plugin - ADFS
The following plugins are still supported today, but will be replaced by new versions in the future:

Apache Httpd - Kerberos 
SAP Plugin - Kerberos 
DB2 – Kerberos

Extending Active Directory authentication to Apache Tomcat applications running on Debian, HP-UX, IBM AIX, Microsoft Windows, Novell SUSE, Red Hat, Sun Solaris and Ubuntu servers

The Centrify Suite for Apache Tomcat delivers Active Directory-based web single sign-on for both intranet and extranet applications hosted both on Microsoft Windows and on popular UNIX and Linux systems.

  • For intranet applications, Centrify enables Active Directory-based web SSO via Kerberos and LDAP.
  • For extranet applications, Centrify leverages Microsoft Active Directory Federation Services (ADFS) to provide federated identity management for both business-to-business and business-to-customer web applications.

A single DirectControl web module supports both authentication methods, and snaps seamlessly into the DirectControl Agent that is installed on the host server. This provides organizations with a single, integrated architecture to secure and manage access to host systems and the applications running on them. DirectControl leverages the organization's Active Directory infrastructure, accounts and groups for seamless integration into existing management processes. No additional servers or software are required.