>> Users are in different branches, >> >> o=peope,ou=AAA,o=zz,o=yy,c=xx >> o=peope,ou=BBB,o=zz,o=yy,c=xx >> o=peope,ou=CCC,o=zz,o=yy,c=xx > > You'll need to define 3 BindLdapAuthenticationHandler beans
I must not have had my morning coffee when I responded this morning. A single handler configured as follows should work fine: <bean class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler"> <property name="filter" value="uid=%u" /> <property name="searchBase" value="o=zz,o=yy,c=xx" /> <property name="scope" value="2" /> <!-- subtree scope --> <property name="contextSource" ref="yourContextSource" /> </bean> My LDAP admin Dave pointed out my embarrassing confusion about search base. Sorry. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
