Tomcat Admin Login issue
For my Tomcat 4.1.27 Java container I have to use the startup.bat and shutdown.bat to start and stop the Web Server.
I tried using thehttp://myserver:8080/admin/login.jsp with the correct username and password that I got fromconf/tomcat-users.xml.
It gives me back a reply:
Access to requested resource has been denied
The form looks like this:
<form method="Post" action='<% response.encodeURL("j_security_check") %>' name ="loginForm">
....
</form>
I tried to findj_security_check and there doesnt seem to be any reference to it anywhere in the Tomat folder. Please advise how I can correct this issue so I can use the Tomcat Admin GUI.
# 1
To access the admin web application, the user you log in as has to have a role of "admin"
The standard Tomcat user in the configured file does not have this role.
Here is my copy of the tomcat-users.xml
Trying to log in as "tomcat" results in a 403 Access denied error (as you experienced)
logging in as admin/myAdminPassword loads the application successfully.
<?xml version='1.0' encoding='utf-8'?>
<tomcat-users>
<role rolename="tomcat"/>
<role rolename="role1"/>
<role rolename="manager"/>
<role rolename="admin"/>
<user username="tomcat" password="tomcat" roles="tomcat"/>
<user username="role1" password="tomcat" roles="role1"/>
<user username="both" password="tomcat" roles="tomcat,role1"/>
<user username="admin" password="myAdminPassword" roles="admin,manager"/>
</tomcat-users>
Cheers,
evnafets
