On Tue, Jun 23, 2015 at 6:33 PM, Mike Seiler <[email protected]>
wrote:
> Daniel,
>
> Thanks. I turned on the debug for Ldaptive, and got multiple lines of
> DEBUG, but none seems to indicate a full error that I can see.
>
> If I manually set useSSL to true (in deployerConfigContext), the
> application initializes fine and cas.log still shows "authentication
> failed" but there are no other errors to indicate that something is wrong
> either in catalina.out or cas.log.
>
Sounds like your properties aren't being applied to the
deployerConfigContext.xml.
> The lines containing the useSSL and useStartTLS:
> -----------------------------------------------
> 2015-06-23 15:12:46,814 DEBUG [org.ldaptive.pool.BlockingConnectionPool] -
> <initialized available queue:
> [org.ldaptive.pool.Queue@458045035::queueType=LIFO,
> queue=[org.ldaptive.pool.AbstractConnectionPool$DefaultPooledConnectionProxy@6a3096d4,
> org.ldaptive.pool.AbstractConnectionPool$DefaultPooledConnectionProxy@630eaf38,
> org.ldaptive.pool.AbstractConnectionPool$DefaultPooledConnectionProxy@2021f8cc
> ]]>
> 2015-06-23 15:12:46,820 DEBUG [org.ldaptive.pool.BlockingConnectionPool] -
> <prune pool task scheduled for
> [org.ldaptive.pool.BlockingConnectionPool@1188516673::name=null,
> poolConfig=[org.ldaptive.pool.PoolConfig@1654322364::minPoolSize=3,
> maxPoolSize=10, validateOnCheckIn=false, validateOnCheckOut=false,
> validatePeriodically=true, validatePeriod=300], activator=null,
> passivator=null, validator=[org.ldaptive.pool.SearchValidator@725194039
> ::searchRequest=[org.ldaptive.SearchRequest@88681342::*baseDn=,
> searchFilter=*[org.ldaptive.SearchFilter@1642584434::filter=(objectClass=*),
> parameters={}], returnAttributes=[1.1], searchScope=OBJECT, timeLimit=0,
> sizeLimit=1, derefAliases=null, typesOnly=false, binaryAttributes=null,
> sortBehavior=UNORDERED, searchEntryHandlers=null,
> searchReferenceHandlers=null, controls=null, followReferrals=false,
> intermediateResponseHandlers=null]]
> pruneStrategy=[org.ldaptive.pool.IdlePruneStrategy@397920599::prunePeriod=300,
> idleTime=600], connectOnCreate=true,
> connectionFactory=[org.ldaptive.DefaultConnectionFactory@587430635
> ::provider=org.ldaptive.provider.jndi.JndiProvider@397aec42,
> config=[org.ldaptive.ConnectionConfig@892141193::ldapUrl=ldap://
> id.fuller.edu:636, connectTimeout=3000, responseTimeout=-1,
> sslConfig=[org.ldaptive.ssl.SslConfig@486207397
> ::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@1427787790::trustCertificates=file:/etc/cas/id_app.pem,
> authenticationCertificate=null, authenticationKey=null],
> trustManagers=null, enabledCipherSuites=null, enabledProtocols=null,
> handshakeCompletedListeners=null], *useSSL=true, useStartTLS=false*,
> connectionInitializer=null]], initialized=false, availableCount=3,
> activeCount=0]>
>
Your connection pool initialized successfully. You're likely having DN
resolution issues, which may be further indication that your properties
aren't being applied. If you post an entire log from a single
authentication attempt I can probably point to the problem.
--Daniel Fisher
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
