> And an error message which (obviously) says 2 results were returned and only > 1 was expected. Am I correct in assuming this is because of the fact that > the second "name" is null ... and if so, can this be fixed?
I don't believe that error has anything to do with attribute mapping. >From my recollection, the LDAP attribute resolver expects exactly _one_ result from its query; anything else is treated as an error condition. This can be understood in light of the potential security risk of mapping a principal to the wrong one of multiple attribute results. Can you verify whether you're actually getting multiple results for your LDAP query? To further complicate matters, you may be getting multiple results due to the inclusion of referrals in your result set. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
