I had to modify cas LdapUtils to work around it. I've also put in a request to add a property to avoid the custom code change.
On Friday, January 7, 2022 at 10:29:46 PM UTC-6 Pablo Vidaurri wrote: > Im getting the following error when authenticating a user against LDAP: > > [org.ldaptive.auth.Authenticator] > authenticationResultCode=AUTHENTICATION_HANDLER_FAILURE, > resultCode=INSUFFICIENT_ACCESS_RIGHTS, matchedDN=, diagnosticMessage=The > request control with Object Identifier (OID) "1.3.6.1.4.1.42.2.27.8.5.1" > cannot be used due to insufficient access rights, referralURLs=[], > messageID=3, controls=[]] > > Is there any way to stop ldaptive from requesting this OID attribute from > ldap? I've already tried including > cas-server-core-api-configuration-model dependency > and setting > cas.authn.ldap[0].passwordPolicy.enabled: false > > > I don't wish to check for password policy and I don't want to involve > another team to make changes to ldap. > > -psv > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/200fc665-f26a-46ff-b560-293d35c99d75n%40apereo.org.
