I totally missed that one! Thank you so much.
Am Mittwoch, 24. August 2016 16:56:18 UTC+2 schrieb Misagh Moayyed: > > CAS does not know how to authenticate you. Define a type > > https://apereo.github.io/cas/development/installation/Configuration-Properties.html#ldap-authentication > > > -- > Misagh > > From: Sascha Müller <[email protected]> <javascript:> > Reply: Sascha Müller <[email protected]> <javascript:> > Date: August 23, 2016 at 11:02:29 PM > To: CAS Community <[email protected]> <javascript:> > Cc: [email protected] <javascript:> <[email protected]> <javascript:> > Subject: Re: [cas-user] What are the exact steps to configure CAS 5.0.0 > RC1 to use LDAP? > > Ok. So here's a full rundown of what I've done so far including config > files and log. Hope that helps. > > First of all I've cloned the repository of the CAS war overlay and > switched to branch 5.0. Then I've generated a certificate (thekeystore) and > put it into '/etc/cas/'. When I run cas, https seems to be working fine. > Next I changed the cas.properties to > > cas.server.name=https://localhost:8443 >> cas.server.prefix=https://localhost:8443/cas > > cas.adminPagesSecurity.ip=127\.0\.0\.1 >> logging.config=file:/etc/cas/config/log4j2.xml >> # cas.serviceRegistry.config.location: classpath:/services >> cas.authn.accept.users= > > ### LDAP settings ### >> cas.authn.ldap[0].useSsl=false >> cas.authn.ldap[0].useStartTls=false >> cas.authn.ldap[0].ldapUrl=ldap:// >> ldapserver.company.com:389/dc=company,dc=com >> cas.authn.ldap[0].dnFormat=uid=%s,ou=Users,dc=company,dc=com >> cas.authn.ldap[0].baseDn=dc=company,dc=com >> cas.authn.ldap[0].connectTimeout=5000 >> cas.authn.ldap[0].principalAttributeId=uid >> cas.authn.ldap[0].principalAttributePassword= >> cas.authn.ldap[0].minPoolSize=3 >> cas.authn.ldap[0].maxPoolSize=10 >> cas.authn.ldap[0].validateOnCheckout=true >> cas.authn.ldap[0].validatePeriodically=true >> cas.authn.ldap[0].validatePeriod=600 >> cas.authn.ldap[0].failFast=true >> cas.authn.ldap[0].idleTime=5000 >> cas.authn.ldap[0].prunePeriod=5000 >> cas.authn.ldap[0].blockWaitTime=5000 > > > I got assured by our systems department, that these settings should be ok. > I did not touch 'application.yml' or any other file (except the pom.xml, > which I attached alongside the cas.log). > > Now, when I run "./build.sh clean package" & "./build.sh run" the server > starts up, but login fails with the message > > 2016-08-24 07:47:01,453 WARN >> [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - >> <Authentication has failed. Credentials may be incorrect or CAS cannot find >> authentication handler that supports [sam] of type >> [UsernamePasswordCredential], which suggests a configuration problem.> >> > > If you need anything else, please let me know. > > Thanks in advance. > > > > Am Mittwoch, 24. August 2016 06:00:37 UTC+2 schrieb Misagh Moayyed: >> >> Without knowing what you have so far, it’s very difficult to say. Either >> you have misplaced the configuration, or you have misdefined the property >> keys. >> >> -- >> Misagh >> >> From: Sascha Müller <[email protected]> >> Reply: Sascha Müller <[email protected]> >> Date: August 23, 2016 at 7:59:31 AM >> To: CAS Community <[email protected]> >> Subject: [cas-user] What are the exact steps to configure CAS 5.0.0 RC1 >> to use LDAP? >> >> Hey everybody, >> >> I tried to configure LDAP login through CAS 5.0.0 RC1 for more or less 4 >> days now. >> As far as I understand the documentation, all I have to do is: >> >> >> - add the dependency *cas-server-support-ldap* to my pom.xml and >> - configure ldap support via cas.properties (like url, baseDn etc.). >> >> >> But when I try to login, I get the following message on the console: >> >> Cannot find authentication handler that supports [username] of type >>> [UsernamePasswordCredential], which suggests a configuration problem. >>> >> >> >> I get the strong feeling I'm missing something really important here... >> -- >> You received this message because you are subscribed to the Google Groups >> "CAS Community" group. >> To unsubscribe from this group and stop receiving emails from it, send an >> email to [email protected]. >> To post to this group, send email to [email protected]. >> Visit this group at >> https://groups.google.com/a/apereo.org/group/cas-user/. >> To view this discussion on the web visit >> https://groups.google.com/a/apereo.org/d/msgid/cas-user/51f27ef4-59b9-4b3e-9cf6-e6908bf3d98d%40apereo.org >> >> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/51f27ef4-59b9-4b3e-9cf6-e6908bf3d98d%40apereo.org?utm_medium=email&utm_source=footer> >> . >> For more options, visit https://groups.google.com/a/apereo.org/d/optout. >> >> -- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected] <javascript:>. > To post to this group, send email to [email protected] <javascript:>. > Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/ > . > To view this discussion on the web visit > https://groups.google.com/a/apereo.org/d/msgid/cas-user/f628b1e7-6a11-48fa-92f2-143866f3e39f%40apereo.org > > <https://groups.google.com/a/apereo.org/d/msgid/cas-user/f628b1e7-6a11-48fa-92f2-143866f3e39f%40apereo.org?utm_medium=email&utm_source=footer> > . > For more options, visit https://groups.google.com/a/apereo.org/d/optout. > > -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/35ed675c-3b03-47fc-8364-8655817104bd%40apereo.org. For more options, visit https://groups.google.com/a/apereo.org/d/optout.
