In my cas-servlet :
<bean id="negociateSpnego"
class="org.jasig.cas.support.spnego.web.flow.SpnegoNegociateCredentialsAction" >
<property name="mixedModeAuthentication" value="true"/>
<property name="ntlm" value="false"/>
</bean>
In my pom.xml :
<dependency>
<groupId>org.jasig.cas</groupId>
<artifactId>cas-server-webapp</artifactId>
<version>${cas.version}</version>
<type>war</type>
<scope>runtime</scope>
</dependency>
<dependency>
<groupId>org.jasig.cas</groupId>
<artifactId>cas-server-support-spnego</artifactId>
<version>3.5.3-SNAPSHOT</version>
</dependency>
...
<properties>
<cas.version>3.5.2</cas.version>
<hibernate.core.version>4.1.0.Final</hibernate.core.version>
</properties>
Nothing magic.
Le 2 déc. 2013 à 14:56, Simon SCHERRER <[email protected]> a écrit :
> Hello Fabrice,
>
> It's more a question than an answer to your problem. As there are few
> informations about making cas-server 3.5.2 and cas-server-support-spnego
> 3.5.3-SNAPHOT work together, how did you manage to do that ? I changed my
> dependency in the pom.xml of my cas-server-webapp and i modified the
> cas-servlet.xml file with "<property name="mixedModeAuthentication"
> value="true"/>", i even replace the original cas-server-support-spnego
> directory for CAS 3.5.2 with the one for CAS 3.5.3-SNAPSHOT but i still
> encounter the classic exception "Invalid property 'mixedModeAuthentication'
> ... Bean property 'mixedModeAuthentication' is not writable ..." in the
> catalina.out with a HTTP 500 Tomcat error page.
>
> I'm completely lost here. Please help.
>
> Thank you,
>
> Simon
>
> Le jeudi 7 novembre 2013 12:32:11 UTC+1, Bacchella Fabrice a écrit :
> I try to setup a cas server with spnego but without NTLM.
>
> So I configured the SPNEGO authentication handler bean in this way :
>
> <bean
> class="org.jasig.cas.support.spnego.authentication.handler.support.JCIFSSpnegoAuthenticationHandler">
>
> <property name="authentication">
> <bean class="jcifs.spnego.Authentication" />
> </property>
> <property name="principalWithDomainName" value="false" />
> <property name="NTLMallowed" value="false"/>
> </bean>
> ...
> <bean name="jcifsConfig"
> class="org.jasig.cas.support.spnego.authentication.handler.support.JCIFSConfig">
>
> <property name="jcifsServicePrincipal" value="HTTP/..." />
> <property name="kerberosDebug" value="false" />
> <property name="kerberosConf" value=".../krb5.conf" />
> <property name="loginConf" value=".../login.conf" />
> </bean>
>
>
> But if I look at my catalina.out log :
>
> jcifs.spnego.AuthenticationException: Error performing NTLM authentication:
> jcifs.smb.SmbException
> jcifs.util.transport.TransportException
> java.net.ConnectException: Connection refused
> ...
> at jcifs.spnego.Authentication.processNtlm(Authentication.java:309)
> at jcifs.spnego.Authentication.processSpnego(Authentication.java:337)
>
> And indeed I see a tcp connection on localhost.
>
> It more a nuisance than a real problem, but I like to keep log clean.
>
> How can I totally disable NTLM but keep SPNEGO ?
>
> I'm using CAS 3.5.2 and cas-server-support-spnego 3.5.3-SNAPSHOT as I need
> the mixedModeAuthentication.
> --
> You are currently subscribed to [email protected] as:
> [email protected]
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-user
>
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
