I see from your deployerConfigContext.xml that you're using the FastBind handler with a DN of the form sAMAcountName=%u,dc=domain,dc=ac,dc=uk. I'm fairly certain that AD DNs don't look like that; on the contrary they are typically something like CN=Administrator,OU=Users,dc=domain,dc=ac,dc=uk. You can certainly authenticate users by sAMAccountName, but you'll likely have to use the Bind handler, which performs the typical 2-phase LDAP search-and-bind authentication. See http://www.ja-sig.org/wiki/display/CASUM/LDAP for more information on the different use cases of Bind and FastBind.
Additionally, don't forget to remove org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler from your list of authentication handlers before you go to production. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
