This ticket is/was assigned to me. It is something that we should solve for PKI in general.

Insteado of binding to the DS using UID/password, we should use a certificate stored in the local NSS database inside the Tomcat instance.

-------- Original Message --------

Subject:	Re: [freeipa] #1353: Explore how to use authentiucation tokens instead of a DM password saved into a file for connecting to CS instances
Date:	Tue, 22 Nov 2011 16:05:12 -0000
From:	freeipa <freeipa@fedorahosted.org>
Reply-To:	nobody@fedoraproject.org
To:	undisclosed-recipients:;

#1353: Explore how to use authentiucation tokens instead of a DM password saved
into a file for connecting to CS instances
----------------------+-----------------------------------------------------
   Reporter:  simo    |                Owner:  admiyo     
       Type:  defect  |               Status:  new        
   Priority:  major   |            Milestone:  3.1 Backlog
  Component:  IPA     |              Version:             
 Resolution:          |             Keywords:             
      Tests:  0       |         Testsupdated:  0          
Affects_cli:  0       |   Candidate_to_defer:  0          
Affects_doc:  0       |             Estimate:             
  On_review:  0       |  
----------------------+-----------------------------------------------------
Changes (by dpal):

  * priority:  critical => major

-- 
Ticket URL: <https://fedorahosted.org/freeipa/ticket/1353#comment:8>
freeipa <http://freeipa.org>
FreeIPA