[cas-user] Help with CAS 5.1.3 & LDAP

Wed, 16 Aug 2017 12:21:46 -0700 

I cannot for the life of me figure out what I need to get my dev CAS
instance to talk to LDAP. When it's running and I try to auth to the
webpage I see this in the logs:

cas_1  | 2017-08-16 19:14:36,150 DEBUG
[org.apereo.cas.authentication.RegisteredServiceAuthenticationHandlerResolver]
- <Authentication handlers used for this transaction are
[HttpBasedServiceCredentialsAuthenticationHandler]>
cas_1  | 2017-08-16 19:14:36,152 WARN
[org.apereo.cas.authentication.PolicyBasedAuthenticationManager] -
<Authentication has failed. Credentials may be incorrect or CAS cannot find
authentication handler that supports [crp] of type
[UsernamePasswordCredential], which suggests a configuration problem.>

I have this in my pom.xml:
    <dependencies>
        <dependency>
            <groupId>org.apereo.cas</groupId>
            <artifactId>cas-server-webapp${app.server}</artifactId>
            <version>${cas.version}</version>
            <type>war</type>
            <scope>runtime</scope>
        </dependency>
        <dependency>
             <groupId>org.apereo.cas</groupId>
*             <artifactId>cas-server-support-ldap</artifactId>*
             <version>${cas.version}</version>
        </dependency>
    </dependencies>

And, I've this in my cas.properties file:
/etc/cas/config # cat cas.properties
cas.server.name: https://localhost:8443
cas.server.prefix: https://localhost:8443/cas

cas.adminPagesSecurity.ip=127\.0\.0\.1

logging.level.org.apereo=DEBUG
logging.config: file:/etc/cas/config/log4j2.xml
cas.serviceRegistry.config.location: classpath:/services

# Override cas-overlay-template auth for testing
cas.authn.accept.users=

and myh ldap.properties


# LDAP Config
cas.authn.policy.req.handlername=LdapAuthenticationHandler
cas.authn.policy.req.enabled=true

cas.authn.ldap[0].type=ANONYMOUS
cas.authn.ldap[0].ldapUrl=ldaps://ldap.somewhere
cas.authn.ldap[0].useSsl=true
cas.authn.ldap[0].baseDn=ou=people,dc=some,dc=where
cas.authn.ldap[0].userFilter=uid={user}
cas.authn.ldap[0].subtreeSearch=true

cas.authn.ldap[0].dnFormat=uid=%s,ou=people,dc=some,dc=where
cas.authn.ldap[0].principalAttributeId=uid
cas.authn.ldap[0].allowMultiplePrincipalAttributeValues=true

It's gotta be some simple little thing I'm missing.
Thanks,
Chris
PS - it's all running in a docker container

-- 
- CAS gitter chatroom: https://gitter.im/apereo/cas
- CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html
- CAS documentation website: https://apereo.github.io/cas
- CAS project website: https://github.com/apereo/cas
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFZ1tgYS_eTRq09SofVSPQHirfnz32nvO-V21i9c1Q34SkV%3DWQ%40mail.gmail.com.

Reply via email to