can you set your LDAP logger to debug level in /etc/cas/config/log4j2.xml +- line 93 e.g. <AsyncLogger name="org.ldaptive" level="debug" />
Restart and test, you should see a great deal more information. ---- Regards *Francois Campbell* Teaching and Learning Product Lead On Fri, 31 Aug 2018 at 17:26, abdellhak tlili <[email protected]> wrote: > that not solve the problem !! > > > Le vendredi 31 août 2018 16:11:09 UTC+2, Francois Campbell a écrit : >> >> Not sure if it just a typo, but your example repeats ldap protocol twice. >> cas.authn.ldap[0].ldapUrl=*ldap:ldap*://localhost:10389/dc=XXX,dc=com >> >> You may also require cas.authn.ldap[0].bindDn >> e.g. >> cas.authn.ldap[0].bindDn: CN=ADMIN_USERNAME,cn=Users,dc=XXX,dc=com >> >> ---- >> Regards >> *Francois Campbell* >> Teaching and Learning Product Lead >> >> >> >> >> >> >> On Fri, 31 Aug 2018 at 16:02, abdellhak tlili <[email protected]> >> wrote: >> >>> Hi All , >>> i'm trying to configure CAS 5.1.9 with LDAP authentication , i have add >>> ldap support dependency in pom.xml also i have add ldap configuration into >>> cas.properites , and when i try to connect LDAP i have this 2 messages in >>> cas.log >>> >>> *cas.properites:* >>> cas.authn.ldap[0].principalAttributeList=sn,cn:admin >>> cas.authn.ldap[0].collectDnAttribute=false >>> cas.authn.ldap[0].principalDnAttributeName=dc=XXX,dc=com >>> cas.authn.ldap[0].allowMultiplePrincipalAttributeValues=true >>> cas.authn.ldap[0].allowMissingPrincipalAttributeValue=true >>> cas.authn.ldap[0].credentialCriteria= >>> >>> >>> cas.authn.attributeRepository.ldap[0].providerClass=org.ldaptive.provider.unboundid.UnboundIDProvider >>> >>> #======================================== >>> # Authentication >>> #======================================== >>> cas.authn.accept.users= >>> cas.authn.ldap[0].type=AD >>> cas.authn.ldap[0].ldapUrl=ldap:ldap://localhost:10389/dc=XXX,dc=com >>> cas.authn.ldap[0].useSsl=false >>> cas.authn.ldap[0].baseDn=ou=Users,dc=XXX,dc=com >>> cas.authn.ldap[0].userFilter=uid={user} >>> cas.authn.ldap[0].bindCredential=userPassword >>> >>> >>> >>> *cas.log* >>> 1- /***************************/ >>> N [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - >>> <Authentication has failed. Credentials may be incorrect or CAS cannot find >>> authentication handler that supports [admin@******.com] of type >>> [UsernamePasswordCredential], which suggests a configuration problem.> >>> 2018-08-31 14:51:28,279 INFO >>> [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit >>> trail record BEGIN >>> /**************************/ >>> >>> 2-/**************************/ >>> 2018-08-31 14:51:28,285 ERROR >>> [org.apereo.cas.web.flow.AuthenticationExceptionHandlerAction] - <Unable to >>> translate handler errors of the authentication exception >>> [org.apereo.cas.authentication.AuthenticationException: 0 errors, 0 >>> successes]Returning [UNKNOWN]> >>> /***************************/ >>> >>> >>> >>> *pleas HELP HELP* >>> >>> >>> -- >>> - Website: https://apereo.github.io/cas >>> - Gitter Chatroom: https://gitter.im/apereo/cas >>> - List Guidelines: https://goo.gl/1VRrw7 >>> - Contributions: https://goo.gl/mh7qDG >>> --- >>> You received this message because you are subscribed to the Google >>> Groups "CAS Community" group. >>> To unsubscribe from this group and stop receiving emails from it, send >>> an email to [email protected]. >>> To view this discussion on the web visit >>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/8baed680-b5ec-405a-8f13-b2b3054e7a88%40apereo.org >>> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/8baed680-b5ec-405a-8f13-b2b3054e7a88%40apereo.org?utm_medium=email&utm_source=footer> >>> . >>> >> >> >> ------------------------------ >> See OpenCollab email disclaimer at >> http://www.opencollab.co.za/email-disclaimer > > -- > - Website: https://apereo.github.io/cas > - Gitter Chatroom: https://gitter.im/apereo/cas > - List Guidelines: https://goo.gl/1VRrw7 > - Contributions: https://goo.gl/mh7qDG > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/a/apereo.org/d/msgid/cas-user/03043b14-30da-4677-8d46-309e26a02140%40apereo.org > <https://groups.google.com/a/apereo.org/d/msgid/cas-user/03043b14-30da-4677-8d46-309e26a02140%40apereo.org?utm_medium=email&utm_source=footer> > . > -- See OpenCollab email disclaimer at http://www.opencollab.co.za/email-disclaimer <http://www.opencollab.co.za/email-disclaimer> -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFQxT-JUL3eET3zJV%2Buw3N6%3D8TaV8tW14L5ry7506j%2BSR_yAoQ%40mail.gmail.com.
