Jeison,
For the LDAP contexts, the username and password associated with the context
is strictly for LDAP servers that require users to authenticate before they
browse the LDAP catalog. If your LDAP server allows anonymous browsing,
then you don¹t need a username and password. If you do need username and
password, then you would enter in the plaintext version of the password in
the configuration and specify the authentication scheme elsewhere.
For example:
<bean id="ldapContext"
class="org.jasig.cas.adaptors.ldap.util.AuthenticatedLdapContextSource">
<property name="pooled" value="true"/>
<property name="urls">
<list>
<value>ldaps://ldap1.example.com</value>
<value>ldaps://ldap2.example.com</value>
</list>
</property>
<property name="userName" value="distinguishing name of
account to connect to LDAP server" />
<property name="password" value="password for userName to
log into LDAP server" />
<property name="baseEnvironmentProperties">
<map>
<entry>
<key><value>java.naming.security.authentication</value></key>
<value>simple</value>
</entry>
</map>
</property>
</bean>
This is a LDAP context bean used commonly with AD servers with LDAP enabled.
The authenticated LDAP context class expects a password like ³this is the
password for the username² and not a SHA encoded password.
HTH,
A-
On 6/16/09 11:55 AM, "Jeison Gutierrez" <[email protected]> wrote:
> I has created a user mannualy with password of plain type,,,NO SHA,,,and with
> this user the authentication is ok,,,but with the users with SHA password is
> not ok,,,do you can help me,,,,thanks
--
Andrew Feller, Analyst
LSU University Information Services
200 Frey Computing Services Center
Baton Rouge, LA 70803
Office: 225.578.3737
Fax: 225.578.6400
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
