I am trying to use ldap authentication withthe following principle resolver,
but I get the error that no principal returned. It says the credentials have
been verified, but then fails trying to look up the user in ldap to gather
additional attributes.
What other information can I provide that will be useful i helping resolve this
issue.
Thanks
Steve
<bean
class="org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver">
<property
name="credentialsToPrincipalResolver">
<bean
class="org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver"
/>
</property>
<property name="filter"
value="{sAMAccountName=%u}" />
<property name="principalAttributeName"
value="sAMAccountName" />
<property name="searchBase"
value="OU=User,OU=Accounts,DC=TestADS,DC=com"
/>
<property name="scope" value="2" />
<property name="contextSource"
ref="contextSource" />
<property name="timeout"
value="5000"></property>
<property name="attributeRepository">
<ref
bean="udcattributeRepository" />
</property>
</bean>
2010-11-30 22:22:58,735 INFO
[org.jasig.cas.authentication.AuthenticationManagerImpl] -
<AuthenticationHandler:
com.sghe.cas.extension.BindSgheLdapAuthenticationHandler successfully
authenticated the user which provided the following credentials: [username:
scook]>
2010-11-30 22:22:58,735 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <Attempting to resolve a principal...>
2010-11-30 22:22:58,735 DEBUG
[org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver]
- <Attempting to resolve a principal...>
2010-11-30 22:22:58,735 DEBUG
[org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver]
- <Creating SimplePrincipal for [scook]>
2010-11-30 22:22:58,736 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <Resolved scook. Trying LDAP resolve now...>
2010-11-30 22:22:58,736 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <LDAP search with filter "{sAMAccountName=scook}">
2010-11-30 22:22:58,736 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <returning searchcontrols: scope=2; search
base=OU=User,OU=Accounts,DC=TestADS,DC=com; attributes=[netIdAttr];
timeout=5000>
2010-11-30 22:22:58,741 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <LDAP search returned zero results.>
2010-11-30 22:22:58,741 INFO
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <Initial principal "scook" was not found in LDAP, returning null>
2010-11-30 22:22:58,741 DEBUG
[org.jasig.cas.authentication.AuthenticationManagerImpl] -
<CredentialsToPrincipalResolver found but no principal returned.>
2010-11-30 22:22:58,827 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor]
- <Extractor did not generate service.>
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
