Yes, I installed ldapseach, I also checked the logs on the LDAP server and there were no connects from the ip-address CAS is running on. This is what seems weird to me, or, is that normal now?: *cas_1 | 2017-08-16 19:14:36,150 DEBUG [org.apereo.cas.authentication.RegisteredServiceAuthenticationHandlerResolver] - <Authentication handlers used for this transaction are [HttpBasedServiceCredentialsAuthenticationHandler]>*
On Thu, Aug 17, 2017 at 2:04 AM 'Daniel M.' via CAS Community < [email protected]> wrote: > OK, before you even try to configure CAS did you use a tool like > ldapsearch from the server where CAS is installed to test the connection > properties? > > > > On Wednesday, August 16, 2017, 3:21:41 PM EDT, Chris Peck <[email protected]> > wrote: > > > I cannot for the life of me figure out what I need to get my dev CAS > instance to talk to LDAP. When it's running and I try to auth to the > webpage I see this in the logs: > > *cas_1 | 2017-08-16 19:14:36,150 DEBUG > [org.apereo.cas.authentication.RegisteredServiceAuthenticationHandlerResolver] > - <Authentication handlers used for this transaction are > [HttpBasedServiceCredentialsAuthenticationHandler]>* > cas_1 | 2017-08-16 19:14:36,152 WARN > [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - > <Authentication has failed. Credentials may be incorrect or CAS cannot find > authentication handler that supports [crp] of type > [UsernamePasswordCredential], which suggests a configuration problem.> > > I have this in my pom.xml: > <dependencies> > <dependency> > <groupId>org.apereo.cas</groupId> > <artifactId>cas-server-webapp${app.server}</artifactId> > <version>${cas.version}</version> > <type>war</type> > <scope>runtime</scope> > </dependency> > <dependency> > <groupId>org.apereo.cas</groupId> > * <artifactId>cas-server-support-ldap</artifactId>* > <version>${cas.version}</version> > </dependency> > </dependencies> > > And, I've this in my cas.properties file: > /etc/cas/config # cat cas.properties > cas.server.name: https://localhost:8443 > cas.server.prefix: https://localhost:8443/cas > > cas.adminPagesSecurity.ip=127\.0\.0\.1 > > logging.level.org.apereo=DEBUG > logging.config: file:/etc/cas/config/log4j2.xml > cas.serviceRegistry.config.location: classpath:/services > > # Override cas-overlay-template auth for testing > cas.authn.accept.users= > > and myh ldap.properties > > > # LDAP Config > cas.authn.policy.req.handlername=LdapAuthenticationHandler > cas.authn.policy.req.enabled=true > > cas.authn.ldap[0].type=ANONYMOUS > cas.authn.ldap[0].ldapUrl=ldaps://ldap.somewhere > cas.authn.ldap[0].useSsl=true > cas.authn.ldap[0].baseDn=ou=people,dc=some,dc=where > cas.authn.ldap[0].userFilter=uid={user} > cas.authn.ldap[0].subtreeSearch=true > > cas.authn.ldap[0].dnFormat=uid=%s,ou=people,dc=some,dc=where > cas.authn.ldap[0].principalAttributeId=uid > cas.authn.ldap[0].allowMultiplePrincipalAttributeValues=true > > It's gotta be some simple little thing I'm missing. > Thanks, > Chris > PS - it's all running in a docker container > > -- > - CAS gitter chatroom: https://gitter.im/apereo/cas > - CAS mailing list guidelines: > https://apereo.github.io/cas/Mailing-Lists.html > - CAS documentation website: https://apereo.github.io/cas > - CAS project website: https://github.com/apereo/cas > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFZ1tgYS_eTRq09SofVSPQHirfnz32nvO-V21i9c1Q34SkV%3DWQ%40mail.gmail.com > <https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFZ1tgYS_eTRq09SofVSPQHirfnz32nvO-V21i9c1Q34SkV%3DWQ%40mail.gmail.com?utm_medium=email&utm_source=footer> > . > > -- > - CAS gitter chatroom: https://gitter.im/apereo/cas > - CAS mailing list guidelines: > https://apereo.github.io/cas/Mailing-Lists.html > - CAS documentation website: https://apereo.github.io/cas > - CAS project website: https://github.com/apereo/cas > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/a/apereo.org/d/msgid/cas-user/1647730453.3165292.1502913221314%40mail.yahoo.com > <https://groups.google.com/a/apereo.org/d/msgid/cas-user/1647730453.3165292.1502913221314%40mail.yahoo.com?utm_medium=email&utm_source=footer> > . > -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS project website: https://github.com/apereo/cas --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFZ1tgZLkTWGzaYeheaG9T8i56XuZ7nSYfSG1rmp9OsTZGktEA%40mail.gmail.com.
