Add the -security option in the startup script of catalina
For debugging security information have below setting in catalina
CATALINA_OPTS=" -Djava.security.debug=acess,failure"
The catalina.policy file should be present under $tomcat/conf/
Change the catalina.policy as required by checking the debug information
To check acess failures use the below:
grep -v "access allow" /usr/local/sso/logs/catalina.out |more
Note: -v is used to invert the search pattern.
or use
grep -v "access allow" /usr/local/sso/logs/catalina.out |egrep "domain|denied" |more
For debugging security information have below setting in catalina
CATALINA_OPTS=" -Djava.security.debug=acess,failure"
The catalina.policy file should be present under $tomcat/conf/
Change the catalina.policy as required by checking the debug information
To check acess failures use the below:
grep -v "access allow" /usr/local/sso/logs/catalina.out |more
Note: -v is used to invert the search pattern.
or use
grep -v "access allow" /usr/local/sso/logs/catalina.out |egrep "domain|denied" |more
