Hello,

We are setting up new CAS 5.1 Server using JDBC authentication.

Initially, to make it work and bring it up and running we used a 
temporary simple text password. And Used QUERY based configuration. It 
worked well and my registered service provider is able to authenticate.

Now since finally, we need to authenticate users against the actual 
encrypted password column. We removed QUERY based configuration and added 
ENODE based configuration.

However, after doing so, we are always getting an error in the logs as:

2017-08-08 03:06:45,689 WARN 
[org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - 
<Authentication has failed. Credentials may be incorrect or CAS cannot find 
authentication handler that supports [XXXXXXXXXXX] of type 
[UsernamePasswordCredential], which suggests a configuration problem.>
Here are the cas.properties that I configured:
#########################################################################
cas.authn.jdbc.encode[0].numberOfIterations=1000
# cas.authn.jdbc.encode[0].numberOfIterationsFieldName=numIterations
cas.authn.jdbc.encode[0].saltFieldName=PasswordSalt
# cas.authn.jdbc.encode[0].staticSalt=
cas.authn.jdbc.encode[0].sql=SELECT * FROM Login L INNER JOIN Contact C ON 
C.ContactID = L.ContactID WHERE C.Email=?
# cas.authn.jdbc.encode[0].algorithmName=SHA-1
cas.authn.jdbc.encode[0].passwordFieldName=EncryptedPassword
# cas.authn.jdbc.encode[0].expiredFieldName=
cas.authn.jdbc.encode[0].disabledFieldName=IsLocked
# cas.authn.jdbc.encode[0].healthQuery=
# cas.authn.jdbc.encode[0].isolateInternalQueries=false
cas.authn.jdbc.encode[0].url=*<MASKED>*
# cas.authn.jdbc.encode[0].failFast=true
# cas.authn.jdbc.encode[0].isolationLevelName=ISOLATION_READ_COMMITTED
cas.authn.jdbc.encode[0].dialect=org.hibernate.dialect.SQLServerDialect
# cas.authn.jdbc.encode[0].leakThreshold=10
# cas.authn.jdbc.encode[0].propagationBehaviorName=PROPAGATION_REQUIRED
# cas.authn.jdbc.encode[0].batchSize=1
cas.authn.jdbc.encode[0].user=*<Masked>*
# cas.authn.jdbc.encode[0].ddlAuto=create-drop
# cas.authn.jdbc.encode[0].maxAgeDays=180
cas.authn.jdbc.encode[0].password=*<Masked>*
# cas.authn.jdbc.encode[0].autocommit=false
cas.authn.jdbc.encode[0].driverClass=com.microsoft.sqlserver.jdbc.SQLServerDriver
cas.authn.jdbc.encode[0].passwordEncoder.type=DEFAULT
cas.authn.jdbc.encode[0].passwordEncoder.characterEncoding=UTF-8
cas.authn.jdbc.encode[0].passwordEncoder.encodingAlgorithm=SHA-1

#########################################################################

 

Thanks & regards,
Navdeep Singh

-- 
- CAS gitter chatroom: https://gitter.im/apereo/cas
- CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html
- CAS documentation website: https://apereo.github.io/cas
- CAS project website: https://github.com/apereo/cas
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/327b7f43-0178-4094-b9ca-fc26a7152b6a%40apereo.org.

Reply via email to