Hi Ron,
Thanks for the reply. Yes, I want to protect the web pages under /ldap/*. In that case, what should the url-pattern be? This works under Sun App Server 7.
Also, Can I omit the group and role? I just want to allow any employee to authenticate when they access the page. I read the document you provide, but I don't really know what group to use at the moment.
Another way without dealing with group and role, I can use the JAAS Authentication, but it requires to write some codes.
Thanks!
Regards,
Johnny
[Message sent by forum member 'tanww888' (tanww888)]
http://forums.java.net/jive/thread.jspa?messageID=272327