I am running "tomcat-5.0.28" to drive the Compuware/iStrobe product & have followed the directions in http://www.dovetail.com/docs/jzos/saf.html to enable SAF security, when I enter "http://x.x.x.x:8080/admin" or "http://x.x.x.x:8080/manager" I get a screen that asks for my mainframe userid & password. Management want me to setup istrobe so that when I enter "http://x.x.x.x:8080/istrobe" I will also need to enter a userid & password.
(pn)

If you already have the SAF stuff working, I think it is just adding a security constraint to the iStrobe web.xml.

If you read the section in this link starting with # 2

http://www.onjava.com/pub/a/onjava/2001 ... omcat.html

I think you'll see how it works.

When I followed the directions in your link I kept getting an error about secutity roles. Via google I found another article at http://www.cafesoft.com/products/cams/t ... urity.html that provided examples of "security-contraint", "auth-constraint", "login-config", and "security-role"
I am now getting prompted for the required userid/password from my mainframe racf database.
Thanks for your input, it led me onto what is working for me.
Paul