Hello, I'm trying to get a simple authentication working between the standard CAS login screen and our MS-AD server. The user login I am working will is in the Users folder of the Active Directory tree. I know that eventually I will want to move to the BindLdapAuthenticationHandler, but for now I'm trying to understand CAS and thought FastBind would be simplest.
Here are the log information that I'm seeing. Shouldn't the credentials listed in the 3rd entry show the username and password? Earlier in the log file I saw that the password was captured by the form. I just wonder whether it is being passed on to the Authentication Handler. 2010-01-25 13:16:11,994 DEBUG [org.springframework.webflow.engine.ActionExecutor] - Executing [annotatedact...@2b735f84 targetAction = org.jasig.cas.web.flow.authenticationviaformact...@314585, attributes = map['method' -> 'submit']] in state 'submit' of flow 'login-webflow' 2010-01-25 13:16:11,994 DEBUG [org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler] - Performing LDAP bind with credential: sAMAccountName=mtromp, cn=Users,dc=ci,dc=ventura,dc=ca,dc=us 2010-01-25 13:16:11,996 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - AuthenticationHandler: org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler failed to authenticate the user which provided the following credentials: [username: mtromp] Also, I was wondering which registry parameters to set on the Microsoft AD Server so that I can see what the Active Directory is seeing during the transaction? I have used the following article: http://support.microsoft.com/kb/314980 to change registry entries in order to use the Event Viewer to get more information. I have yet to be able to identify entries related to CAS. Any help will be appreciated. Marianne Tromp Software Developer, part-time IT - applications 805.654-7781 City of Ventura -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
