Can I attempt authentication to multiple LDAPs (i.e. chaining) so that is the
first LDAP doesn't like my user/pass combination CAS will the next LDAP?
I think I should be able to do this just by having multiple beans in the
deployerConfig.xml like this: Will this work?
Thanks,
Bryan
<bean id="contextSource"
class="org.springframework.ldap.core.support.LdapContextSource">
<property name="pooled" value="true"/>
<property name="urls">
<list>
<value>ldap://Ldap1.acs.utah.edu: /</value>
</list>
</property>
<property name="userDn" value="uid=admin,ou=System
Accounts,o=utah.edu"/>
<property name="password" value="adminPass"/>
<property name="baseEnvironmentProperties">
<map>
<entry>
<key>
<value>java.naming.security.authentication</value>
</key>
<value>simple</value>
</entry>
</map>
</property>
</bean>
<bean id="contextSource2"
class="org.springframework.ldap.core.support.LdapContextSource">
<property name="pooled" value="true"/>
<property name="urls">
<list>
<value>ldap://Ldap2.acs.utah.edu: /</value>
</list>
</property>
<property name="userDn" value="uid=admin2,ou=System
Accounts,o=utah.edu"/>
<property name="password" value="adminPass2"/>
<property name="baseEnvironmentProperties">
<map>
<entry>
<key>
<value>java.naming.security.authentication</value>
</key>
<value>simple</value>
</entry>
</map>
</property>
</bean>
.
.
.
<bean
class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler">
<property name="filter" value="unid=%u" />
<property name="searchBase" value="ou=people,o=utah.edu"/>
<property name="contextSource" ref="contextSource" />
</bean>
<bean
class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler">
<property name="filter" value="unid=%u" />
<property name="searchBase" value="ou=people,o=utah.edu"/>
<property name="contextSource2" ref="contextSource2" />
</bean>
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
