I suspect I'm doing something horribly wrong. I am not to the point where logs will be any benefit for us yet. Below are the steps I have taken
Here are the steps I've done. These are all on server1 the server with Tomcat5.5 and CAS 3.4.6. 1) Download CAS 3.4.6, dropped the war file into the webapps folder, restarted the tomcat service and blew out the cas-server-webapp-3.4.6 folder 2) I navigated to http://localhost:8080/cas-server-webapp-3.4.6/login and tested password//password - login successful. 3) I navigated to **TOMCATHOME**\webapps\cas-server-webapp-3.4.6\META-INF\maven\org.jasig.cas\cas-server-webapp\pom.xml I included the below code: ------------------------------------------- <dependency> <groupId>${project.groupId}</groupId> <artifactId>cas-server-support-ldap</artifactId> <version>${project.version}</version> </dependency> ------------------------------------------- 4) I stop the tomcat service. 5) I opened the **TOMCATHOME**\webapps\cas-server-webapp-3.4.6\WEB-INF\deployerConfigContext.xml file. added the below code as the last bean in the <beans>....</beans> section ------------------------------------------------------------------------------------------- <bean id="contextSource" class="org.springframework.ldap.core.support.LdapContextSource"> <property name="urls"> <list> <value>ldaps://yourdc.yourdomain.edu/</value> </list> </property> <property name="userDn" value="{cn=bind_user_goes_here,cn=Users,dc=yourdomain,dc=edu}"/> <property name="password" value="{bind_user_password_goes_here}"/> <property name="baseEnvironmentProperties"> <map> <entry> <key> <value>java.naming.security.authentication</value> </key> <value>simple</value> </entry> </map> </property> </bean> ------------------------------------------------------------------------------------------- Removed the blow code: ------------------------------------------------------------------------------------------- <bean class="org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler" /> ------------------------------------------------------------------------------------------- Added in its place the code: ------------------------------------------------------------------------------------------- <bean class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler"> <property name="filter" value="sAMAccountName=%u" /> <property name="searchBase" value="cn=Users,dc=yourdomain,dc=edu" /> <property name="contextSource" ref="contextSource" /> <property name="ignorePartialResultException" value="yes" /> <!-- fix because of how AD returns results --> </bean> ------------------------------------------------------------------------------------------- Added the code below to the authenticationhandler bean properties ------------------------------------------------------------------------------------------- <property name="authenticationHandlers"> <list> <!-- | This is the authentication handler that authenticates services by means of callback via SSL, thereby validating | a server side SSL certificate. +--> <bean class="org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler"> <property name="httpClient" ref="httpClient" /> </bean> <!-- | This is the authentication handler declaration that every CAS deployer will need to change before deploying CAS | into production. | With this configuration you'll be using LDAP FastBind authentication. +--> <bean class="org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler" > <property name="filter" value="uid=%u,ou=people,dc=rutgers,dc=edu" /> <property name="contextSource" ref="contextSource" /> </bean> </list> </property> ------------------------------------------------------------------------------------------- I dropped the following files into the **TOMCATHOME**\webapps\cas-server-webapp-3.4.6\WEB-INF\lib folder. ------------------------------------------------------------------------------------------- spring-ldap-1.3.1.RELEASE-all.jar cas-server-support-ldap-3.4.6.jar ------------------------------------------------------------------------------------------- 6) I restarted tomcat and navigated to the http://localhost:8080/cas-server-webapp-3.4.6/login location The link response is now: HTTP Status 404 - -------------------------------------------------------------------------------- type Status report message description The requested resource () is not available. -------------------------------------------------------------------------------- Apache Tomcat/5.5.30 -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
