Hi Nicolas,
You may need to include the following bean under authenticationManager bean:
<bean class="org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler"
>
<property name="filter" value="${ldap.search.filter}" />
<property name="contextSource" ref="contextSource" />
</bean>
Along with this you might need to include the following bean:
<bean id="contextSource"
class="org.springframework.ldap.core.support.LdapContextSource">
<property name="pooled" value="false"/>
<property name="urls">
<list>
<value>${ldap.host.name}</value>
</list>
</property>
<property name="userDn" value="${ldap.userDn}"/>
<property name="password" value="${ldap.manager.password}"/>
<property name="baseEnvironmentProperties">
<map>
<entry key="java.naming.security.authentication" value="simple" />
</map>
</property>
</bean>
Update the following with your LDAP username and password:
<sec:user-service id="userDetailsService">
<sec:user name="@@THIS SHOULD BE REPLACED@@" password="notused"
authorities="ROLE_ADMIN" />
</sec:user-service>
And then define values in cas.properties for the following as per your LDAP
structure:
ldap.host.name=ldap://www.xyz.com:389
ldap.manager.password=password
ldap.userDn=uid=admin,ou=users,o=organization
ldap.search.filter=uid=%u,ou=users,o=organization
Thanks,
Sunil.
On Wednesday, June 4, 2014 1:14:54 PM UTC+5:30, Nico Lang wrote:
>
> Hi Andrew and Sunil, i'm trying to deploy CAS 3.5.2 to athenticate on our
> active directory,
> in my deployerConfigContext.xml i let evereything by default except ldap
> bind config so i have :
>
> <bean id="authenticationManager"
> class="org.jasig.cas.authentication.AuthenticationManagerImpl">
> <property name="credentialsToPrincipalResolvers">
> <list>
> <bean
> class="org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver"
>
> >
> <property name="attributeRepository"
> ref="attributeRepository" />
> </bean>
> <bean
>
> class="org.jasig.cas.authentication.principal.HttpBasedServiceCredentialsToPrincipalResolver"
>
> />
> </list>
> </property>
>
>
>
> On Tuesday, June 3, 2014 4:18:34 PM UTC+2, Nico Lang wrote:
>>
>> Hi, i'm still trying to set up cas for ldap on my network
>>
>> webapps is working when i try to login i get this error on cas.log and i
>> can't figure out my mistakes.
>>
>> 2014-06-03 16:12:46,905 INFO
>> [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] -
>> <Beginning ticket cleanup.>
>> 2014-06-03 16:12:46,906 INFO
>> [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - <0
>> tickets found to be removed.>
>> 2014-06-03 16:12:46,906 INFO
>> [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] -
>> <Finished ticket cleanup.>
>> 2014-06-03 16:12:47,341 INFO
>> [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit
>> trail record BEGIN
>> =============================================================
>> WHO: [username: test]
>> WHAT: 'principal' cannot be null.
>> Check the correctness of @Audit annotation at the following audit point:
>> execution(public abstract org.jasig.cas.authentication.Authentication
>> org.jasig.cas.authentication.AuthenticationManager.authenticate(org.jasig.cas.authentication.principal.Credentials))
>> ACTION: TICKET_GRANTING_TICKET_NOT_CREATED
>> APPLICATION: CAS
>> WHEN: Tue Jun 03 16:12:47 CEST 2014
>> CLIENT IP ADDRESS: 192.168.1.2
>> SERVER IP ADDRESS: 192.168.1.2
>>
>> then Cas webapps say
>>
>>
>>
>> *CAS is Unavailableany help could be really great *nicolas
>>
>> --
>> You are currently subscribed to [email protected] <javascript:> as:
>> [email protected] <javascript:>
>> To unsubscribe, change settings or access archives, see
>> http://www.ja-sig.org/wiki/display/JSG/cas-user
>>
>> --
> You are currently subscribed to [email protected] <javascript:> as:
> [email protected] <javascript:>
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-user
>
>
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
