Jérémie
Use a tool like ldapsearch or directory studio to make sure the connection
settings work from the computer running cas.
You can get more log details by debugging ldaptive (set ldap.log.level to
debug).
If cas is connecting to ldap, check your ldap logs to see is happening on that
end.
Ray
On Mon, 2021-03-22 at 08:25 -0700, Jérémie Pilette wrote:
Notice: This message was sent from outside the University of Victoria email
system. Please be cautious with links and sensitive information.
It seems to be Invalid Credential for the user.. I don't know why..
Le lundi 22 mars 2021 à 16:21:48 UTC+1, Jérémie Pilette a écrit :
It doesn't change anything with this two lines added ... :o(
Le lundi 22 mars 2021 à 16:17:58 UTC+1, Bartosz Nitkiewicz a écrit :
implementation is ok
Try to add
cas.authn.ldap[0].name=adYourName
cas.authn.ldap[0].order=0
poniedziałek, 22 marca 2021 o 16:13:17 UTC+1 Jérémie Pilette napisał(a):
Yes I have :
compile "org.apereo.cas:cas-server-support-ldap:${project.'cas.version'}"
But i have seen that instead of "compile" we can put "implementation".
I do not know which one we have to use
Le lundi 22 mars 2021 à 16:07:48 UTC+1, Bartosz Nitkiewicz a écrit :
Hi,
Did you build ldap dependency into your CAS server?
You should add org.apereo.cas:cas-server-support-ldap:${casServerVersion} in
build.graddle and rebuild CAS app.
Regards,
BN
poniedziałek, 22 marca 2021 o 15:50:04 UTC+1 Jérémie Pilette napisał(a):
Here my cas.properties
***********
cas.server.name<http://cas.server.name>=https://xxxxx.xxxxx.fr
cas.server.prefix=${cas.server.name<http://cas.server.name>}/cas
logging.config=file:/etc/cas/config/log4j2.xml
cas.service-registry.json.location=file:/etc/cas/services
cas.authn.ldap[0].principal-attribute-list=cn,givenName,sn
# cas.authn.ldap[0].collect-dn-attribute=false
# cas.authn.ldap[0].principal-dn-attribute-name=
# cas.authn.ldap[0].allow-multiple-principal-attribute-values=true
# cas.authn.ldap[0].allow-missing-principal-attribute-value=true
# cas.authn.ldap[0].credential-criteria=
cas.authn.ldap[0].ldap-url=ldap://xxx.yyyy.com<http://xxx.yyyy.com>
cas.authn.ldap[0].bind-dn=userdn
cas.authn.ldap[0].bind-credential=pwd
cas.authn.ldap[0].base-dn=my_base_dn
cas.authn.ldap[0].subtree-search=true
cas.authn.ldap[0].search-filter=my_filter
cas.authn.ldap[0].page-size=0
cas.authn.ldap[0].principal-attribute-password=userPassword
cas.authn.ldap[0].min-pool-size=3
cas.authn.ldap[0].max-pool-size=10
cas.authn.ldap[0].validate-on-checkout=true
cas.authn.ldap[0].validate-periodically=true
cas.authn.ldap[0].validate-period=PT5M
cas.authn.ldap[0].validate-timeout=PT5S
cas.authn.ldap[0].fail-fast=false
cas.authn.ldap[0].idle-time=PT10M
cas.authn.ldap[0].prune-period=PT2H
cas.authn.ldap[0].block-wait-time=PT3S
cas.authn.ldap[0].use-start-tls=true
cas.authn.ldap[0].response-timeout=PT5S
*******************
Le lundi 22 mars 2021 à 15:37:56 UTC+1, Jérémie Pilette a écrit :
Hi,
I have just install the CAS server version 6.4 and made my LDAP configuration.
Impossible for users to authenticate.
Maybe I forget something... I do not know what...
Do you have an idea please ?
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | [email protected]<mailto:[email protected]>
I respectfully acknowledge that my place of work is located within the
ancestral, traditional and unceded territory of the Songhees, Esquimalt and
WSÁNEĆ Nations.
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/07bc9e13d75ea9b164718f5ffe8204ab92f54e2d.camel%40uvic.ca.
