> -----Original Message----- > From: Marvin Addison [mailto:[email protected]] > Sent: Monday, 27 April 2009 11:25 PM > To: [email protected] > Subject: Re: [cas-user] JAAS + LDAP not authenticating > > That error reads like an error in your JAAS config file. Following is > the JAAS config file we use in the vt-ldap unit tests. You may find > it helpful as a starting point for configuring the one for your > environment: > > vt-ldap { > edu.vt.middleware.ldap.jaas.LdapLoginModule required > ldapUrl="ldap://ed-dev.middleware.vt.edu:14389"; > base="ou=test,dc=vt,dc=edu" > tls="true" > hostnameVerifier="edu.vt.middleware.ldap.AnyHostnameVerifier" > serviceUser="uid=1,ou=test,dc=vt,dc=edu" > serviceCredential="not-the-password" > userField="mail" > roleBase="ou=test,dc=vt,dc=edu" > roleFilter="(mail={1})" > roleAttribute="objectClass" > userRoleAttribute="departmentNumber"; > }; > > Hope that helps, > Marvin
OK That helps the errors but still fails authentication when logging in via the webform ie. http://<servername>:8080/cas-server-webapp-3.3.2/login and tcpdump is reporting no traffic to the LDAP server The only somewhat relevant lines I can see in the logs are 2009-04-27 23:31:13,809 INFO [org.jasig.cas.web.flow.AuthenticationViaFormAction] - FormObjectClass not set. Using default class of org.jasig.cas.authentication.principal.UsernamePasswordCredentials with formObjectName credentials and validator org.jasig.cas.validation.UsernamePasswordCredentialsValidator. 2009-04-28 20:07:06,261 DEBUG [org.jasig.cas.authentication.handler.support.JaasAuthenticationHandler] - Attempting authentication for: agiggins 2009-04-28 20:07:06,316 DEBUG [org.jasig.cas.authentication.handler.support.JaasAuthenticationHandler] - Authentication failed for: agiggins 2009-04-28 20:07:06,316 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - AuthenticationHandler: org.jasig.cas.authentication.handler.support.JaasAuthenticationHandler failed to authenticate the user which provided the following credentials: [username: agiggins] -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
