One more thing. This is CAS instance working in docker container but it
shouldn't make any difference. After trying to login with LDAP credentials
I have:
>
2021-03-02 09:03:22,128 INFO
[org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit
trail record BEGIN
=============================================================
WHO: 1233412
WHAT: Supplied credentials: [UsernamePasswordCredential(username=1233412,
source=null, customFields={})]
ACTION: AUTHENTICATION_FAILED
APPLICATION: CAS
WHEN: Tue Mar 02 09:03:22 GMT 2021
CLIENT IP ADDRESS: IP
SERVER IP ADDRESS: IP
=============================================================
>
2021-03-02 09:03:22,129 WARN
[org.apereo.cas.web.flow.resolver.impl.DefaultCasDelegatingWebflowEventResolver]
- <0 errors, 0 successes>
wtorek, 2 marca 2021 o 10:01:33 UTC+1 Bartosz Nitkiewicz napisał(a):
> Checked. Doesn't work either :(
>
> wtorek, 2 marca 2021 o 09:57:10 UTC+1 leleuj napisał(a):
>
>> Hi,
>>
>> For the AD LDAP, your type property should be AD:
>>
>> cas.authn.ldap[0].type=AD
>>
>>
>> Thanks.
>> Best regards,
>> Jérôme
>>
>>
>>
>> Le mar. 2 mars 2021 à 09:43, Bartosz Nitkiewicz <[email protected]> a
>> écrit :
>>
>>> Hello.
>>> I need your help. I'm trying to use CAS as authentication service for
>>> some of my applications. There are user names and passwords stored in AD
>>> (LDAP) server. I can't make CAS to authenticate users through LDAP. I have
>>> read all documentation an this ML, found some configs and I tried almost
>>> everything. Could someone look at my simple cas.properties and tell me if
>>> it looks ok?
>>>
>>> cas.server.name: https://localhost:8443
>>> cas.server.prefix: ${cas.server.name}/cas
>>>
>>> cas.authn.accept.enabled=false
>>>
>>> cas.authn.policy.any.try-all=false
>>> cas.authn.policy.any.enabled=true
>>>
>>> cas.authn.ldap[0].type=AUTHENTICATED
>>> cas.authn.ldap[0].ldap-url=ldaps://ldpadomainname.org
>>> cas.authn.ldap[0].base-dn=OU=TEST,dc=test,dc=test,dc=test,dc=org
>>> cas.authn.ldap[0].subtree-search=true
>>>
>>> cas.authn.ldap[0].searchFilter=(&(objectclass=*)(sAMAccountName={user}))
>>>
>>>
>>> cas.authn.ldap[0].bind-dn=cn=testaccount,cn=group,dc=test,dc=test,dc=test,dc=com
>>> cas.authn.ldap[0].bind-credential=password
>>>
>>> cas.authn.ldap[0].keystore=file:/etc/cas/config/thekeystore
>>> cas.authn.ldap[0].keystorePassword=asd123456
>>> cas.authn.ldap[0].keystoreType=PKCS12
>>>
>>> ldapsearch form commandline works fine. I can filter LDAP tree to find
>>> proper username.
>>>
>>> Thanks in advance.
>>>
>>> --
>>> - Website: https://apereo.github.io/cas
>>> - Gitter Chatroom: https://gitter.im/apereo/cas
>>> - List Guidelines: https://goo.gl/1VRrw7
>>> - Contributions: https://goo.gl/mh7qDG
>>> ---
>>> You received this message because you are subscribed to the Google
>>> Groups "CAS Community" group.
>>> To unsubscribe from this group and stop receiving emails from it, send
>>> an email to [email protected].
>>> To view this discussion on the web visit
>>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/88e9b773-d5df-4b8f-ae1e-4b299840d479n%40apereo.org
>>>
>>> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/88e9b773-d5df-4b8f-ae1e-4b299840d479n%40apereo.org?utm_medium=email&utm_source=footer>
>>> .
>>>
>>
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/45e94e3b-5596-4974-b564-62f11920c245n%40apereo.org.
