I have a JAAS config file using Kerberos and I changed my cas.properties
file like this :
cas.authn.jaas[0].realm=MY.DOMAIN
cas.authn.jaas[0].kerberosKdcSystemProperty=ad.MY.DOMAIN
cas.authn.jaas[0].kerberosRealmSystemProperty=MY.DOMAIN
cas.authn.jaas[0].loginConfigurationFile=/etc/cas/config/login.conf
cas.authn.jaas[0].principal.principalAttribute="uid=usr-docker,dc=my,dc=domain"
Still doesn't work.
Le mardi 8 octobre 2019 16:49:53 UTC+2, Kevin Imbrechts a écrit :
>
> Hello,
>
> With my CAS 5.3.10, I want to authenticate with SPNEGO when it's possible.
> But it can happen that some users can't use SPNEGO. I want to use login
> form as a fallback when SPNEGO failed authentication.
> I see the login form, but when I submit the form, I have an error "bad
> login/password".
> Any idea ? What I've misconfigured ?
>
> Thanks.
>
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/8475df2d-a7d4-4369-8590-1cdb720c55bb%40apereo.org.
SIDEN.INT {
com.sun.security.auth.module.Krb5LoginModule sufficient
refreshKrb5Config=TRUE
useTicketCache=TRUE
renewTGT=TRUE
useKeyTab=TRUE
doNotPrompt=FALSE
keyTab=/etc/cas/config/cas.HTTP.keytab
storeKey=TRUE/FALSE
principal="uid=usr-docker,dc=my,dc=domain"
debug=TRUE;
};
