Hi Marvin,
thanks for your message. The reason for which I didn't post my
LdapContextSource bean is that it's basically the same as the one on the
example. Moreover, the only difference is of course the details of the
username, which in my case is:
<property name="userDn" value="uid=username,ou=X,o=Y,o=Z"/>
where "uid=username,ou=X,o=Y,o=Z" is exactly the same ldap context
configuration I have for "native" ldap in the moodle configuration when
not using CAS. I also tried only "uid=admin" without success. (username
is a power ldap user).
What I get from the ldap log is as follows:
[14/Oct/2009:14:34:38 +0100] conn=302540 op=0 msgId=1 - BIND
dn="uid=username,ou=X,o=Y,o=Z" method=128 version=3
[14/Oct/2009:14:34:38 +0100] conn=302540 op=0 msgId=1 - RESULT err=32
tag=97 nentries=0 etime=0
I'm not a world-expert of LDAP but as far as I know error 32 is a "no
such object", meaning that "username" was not found in the directory -
which is technically not possible. Please note that "username" manages
to authenticate into moodle when using the native direct connection to LDAP.
Any hint would be highly appreciated :)
Thanks,
Giuseppe
Marvin Addison wrote:
When I try to authenticate, I cannot get in, and the error seems connected
to the ldap user I specified:
Error in object 'credentials': codes
[error.authentication.credentials.bad.credentials,error.authentication.credentials.bad];
arguments []; default message [error.authentication.credentials.bad],
I've found it's most helpful to review the LDAP logs when
troubleshooting authentication failures like this. There are at least
three points of failure: the administrative bind, user search to
lookup user DN, and user bind; the logs will likely isolate which of
those is the cause of failure. Once you identify which phase is
failing, it would help to post your entire LdapContextSource bean
definition so we can evaluate it against the details of your LDAP
environment, which you'd need to provide as well.
M
--
Giuseppe Sollazzo
Systems Developer / Administrator
Computing Services
St. George's, University of London
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
