RE: [cas-user] return uppercase version of LDAP attribute

[Ourada, John]

What method are you using to retrieve the attributes?

I modified the serviceValidateSuccess.jsp to return attribute values and have 
made data modifications there.  If you are using samlValidate, then I am no 
help there.

-John

From: Brian Lewis [mailto:blew...@morainepark.edu]
Sent: Wednesday, July 02, 2014 2:24 PM
To: cas-user@lists.jasig.org
Subject: RE: [cas-user] return uppercase version of LDAP attribute

We use BEIS and get the UDC_IDENTIFIER from Banner to update AD.
Thanks,

Brian

Brian Lewis
Director, Administrative Computing and Web Services
Ellucian
Moraine Park Technical College
235 N. National Ave.
Fond du Lac, WI 54936

Voice: 920.924.3517
Mobile: 920.273.9728
Fax: 920-907-6997
brian.le...@ellucian.com<mailto:brian.le...@ellucian.com>
www.ellucian.com<http://www.ellucian.com/>

CONFIDENTIALITY:  This e-mail (including any attachments) may contain 
confidential, proprietary and privileged information, and unauthorized 
disclosure or use is prohibited.  If you received this e-mail in error, please 
notify the sender and delete this e-mail from your system. Thank you.


From: Linda Toth [mailto:ltt...@alaska.edu]
Sent: Wednesday, July 02, 2014 2:11 PM
To: cas-user@lists.jasig.org
Subject: Re: [cas-user] return uppercase version of LDAP attribute

Brian,

Since the UDC_IDENTIFIER is a string in Banner, we migrated all UDC IDs to AD 
as they are in the database.  We have not had to make any translation to upper 
case.

Would the migration script/tool that our Banner group used help?

Linda

Linda Toth
University of Alaska - Office of Information Technology (OIT) - Identity and 
Access Management
910 Yukon Drive, Suite 103
Fairbanks, Alaska 99775
Tel: 907-450-8320
Fax: 907-450-8381
linda.t...@alaska.edu<mailto:linda.t...@alaska.edu> | 
www.alaska.edu/oit/<http://www.alaska.edu/oit/>


On Wed, Jul 2, 2014 at 7:09 AM, Brian Gibson 
<gibson_br...@wheatoncollege.edu<mailto:gibson_br...@wheatoncollege.edu>> wrote:
Hi all,

We are running CAS 3.5.2 and it is successfully pointing to Active Directory to 
authenticate users and to map certain attributes. We need to take an attribute 
that is returned from AD and convert it to uppercase before we release it.  The 
CAS name for the attribute is UDC_IDENTIFIER and it maps the AD sAMAccountName 
value to it, here is the <bean> entry and it is the line in bold that does the 
mapping.

<bean id="attributeRepository" 
class="org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao">
  <property name="contextSource" ref="contextSource" />
  <property name="baseDN" value="ou=<our container>,dc=<our container>,dc=edu" 
/>
  <property name="requireAllQueryAttributes" value="true" />

  <property name="queryAttributeMapping">
    <map>
      <entry key="username" value="sAMAccountName" />
    </map>
  </property>

  <property name="resultAttributeMapping">
    <map>
      <!-- Mapping beetween LDAP entry attributes (key) and Principal's (value) 
-->
      <entry value="Name" key="cn" />
      <entry value="Email" key="mail" />
      <entry value="DisplayName" key="displayName" />
     <entry value="UDC_IDENTIFIER" key="sAMAccountName" />
    </map>
  </property>
</bean>

Anyone know how to set the value returned as the UDC_IDENTITIFIER to be 
uppercase? Would it be done in the above section or would it be done in the 
service entry we have for the specific web application which is here


<bean class="org.jasig.cas.services.RegexRegisteredService">
        <property name="id" value="1" />
        <property name="name" value="Banner SSO manager CAS client" />
        <property name="description" value="Banner SSO manager CAS client" />
        <property name="serviceId" 
value="http://webldevl1\.wheatonma\.edu\:7004/ssomanager/.*<http://webldevl1/.wheatonma/.edu/:7004/ssomanager/.*>"
 />
        <property name="evaluationOrder" value="0" />
        <property name="allowedAttributes">
            <list>
                        <value>Name</value>
                        <value>Email</value>
                        <value>DisplayName</value>
                        <value>UDC_IDENTIFIER</value>
            </list>
         </property>
</bean>

Thanks for any help you can offer :-)


--



++++++++++++++++++++++++++++

Brian Gibson

Systems Administrator

Wheaton College



Are you a musician? If so visit my Arbans Online music site at

http://arbansonline.com and listen & contribute

--

You are currently subscribed to 
cas-user@lists.jasig.org<mailto:cas-user@lists.jasig.org> as: 
ltt...@alaska.edu<mailto:ltt...@alaska.edu>

To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user




--

You are currently subscribed to 
cas-user@lists.jasig.org<mailto:cas-user@lists.jasig.org> as: 
blew...@morainepark.edu<mailto:blew...@morainepark.edu>

To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user



--

You are currently subscribed to 
cas-user@lists.jasig.org<mailto:cas-user@lists.jasig.org> as: 
jour...@depaul.edu<mailto:jour...@depaul.edu>

To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user