You should configure the logging levels for CAS itself through the log4j.xml file. https://wiki.jasig.org/display/CASUM/Logging
More than likely, you're missing the bind credentials. -Misagh > -----Original Message----- > From: Stein, Eric [mailto:[email protected]] > Sent: Thursday, August 30, 2012 6:52 AM > To: [email protected] > Subject: [cas-user] Trouble debugging LDAP problem > > Hi, > I made a trivial Hello World webapp and am trying to protect it with CAS > 3.5.0 using LDAP/Active Directory as my authentication handler. When I try to > access my Hello World app, I am correctly routed to a login screen. When I > enter my credentials, however, I am rejected. The CAS GUI responds with: > > The credentials you provided cannot be determined to be authentic. > > I went through the logs in the Tomcat 7 log directory, and the only one with > any information is tomcat7-stdout.log, which says: > > 2012-08-30 09:31:28,051 ERROR > [org.jasig.cas.authentication.AuthenticationManagerImpl] - > <org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler threw error > authenticating [username: steine]> > > No stack trace or other information. I have Tomcat's logging.properties set > to log FINEST: > > org.jasig.cas = FINEST > > How do I get more information about the error? Does this mean CAS is saying > LDAP has no matching user/password pairing? > > Attached is our deployerConfigContext.xml with customized values replaced > with CUSTOM_VALUE. No other overlays are being used. > > Thanks, > Eric Stein > > -- > You are currently subscribed to [email protected] as: > [email protected] To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
