OK, before you even try to configure CAS did you use a tool like ldapsearch from the server where CAS is installed to test the connection properties?
On Wednesday, August 16, 2017, 3:21:41 PM EDT, Chris Peck <[email protected]> wrote: I cannot for the life of me figure out what I need to get my dev CAS instance to talk to LDAP. When it's running and I try to auth to the webpage I see this in the logs: cas_1 | 2017-08-16 19:14:36,150 DEBUG [org.apereo.cas.authentication.RegisteredServiceAuthenticationHandlerResolver] - <Authentication handlers used for this transaction are [HttpBasedServiceCredentialsAuthenticationHandler]>cas_1 | 2017-08-16 19:14:36,152 WARN [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - <Authentication has failed. Credentials may be incorrect or CAS cannot find authentication handler that supports [crp] of type [UsernamePasswordCredential], which suggests a configuration problem.> I have this in my pom.xml: <dependencies> <dependency> <groupId>org.apereo.cas</groupId> <artifactId>cas-server-webapp${app.server}</artifactId> <version>${cas.version}</version> <type>war</type> <scope>runtime</scope> </dependency> <dependency> <groupId>org.apereo.cas</groupId> <artifactId>cas-server-support-ldap</artifactId> <version>${cas.version}</version> </dependency> </dependencies> And, I've this in my cas.properties file:/etc/cas/config # cat cas.properties cas.server.name: https://localhost:8443cas.server.prefix: https://localhost:8443/cas cas.adminPagesSecurity.ip=127\.0\.0\.1 logging.level.org.apereo=DEBUGlogging.config: file:/etc/cas/config/log4j2.xmlcas.serviceRegistry.config.location: classpath:/services # Override cas-overlay-template auth for testingcas.authn.accept.users= and myh ldap.properties # LDAP Configcas.authn.policy.req.handlername=LdapAuthenticationHandlercas.authn.policy.req.enabled=true cas.authn.ldap[0].type=ANONYMOUScas.authn.ldap[0].ldapUrl=ldaps://ldap.somewherecas.authn.ldap[0].useSsl=truecas.authn.ldap[0].baseDn=ou=people,dc=some,dc=wherecas.authn.ldap[0].userFilter=uid={user}cas.authn.ldap[0].subtreeSearch=true cas.authn.ldap[0].dnFormat=uid=%s,ou=people,dc=some,dc=wherecas.authn.ldap[0].principalAttributeId=uidcas.authn.ldap[0].allowMultiplePrincipalAttributeValues=true It's gotta be some simple little thing I'm missing.Thanks,ChrisPS - it's all running in a docker container -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS project website: https://github.com/apereo/cas --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFZ1tgYS_eTRq09SofVSPQHirfnz32nvO-V21i9c1Q34SkV%3DWQ%40mail.gmail.com. -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS project website: https://github.com/apereo/cas --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/1647730453.3165292.1502913221314%40mail.yahoo.com.
