Rebecca, On the LDAP side, do the LDAP logs agree that invalid credentials was presented?
Thanks, Carl Waldbieser ITS Systems Programmer Lafayette College ----- Original Message ----- From: "Rebecca Fountain" <[email protected]> To: [email protected] Sent: Wednesday, July 15, 2015 12:53:11 PM Subject: RE: [cas-user] Inconsistant Ldap Authentication Failure 2015-07-15 09:51:37,206 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - Audit trail record BEGIN ============================================================= WHO: audit:unknown WHAT: 1 errors, 0 successes ACTION: TICKET_GRANTING_TICKET_NOT_CREATED APPLICATION: CAS WHEN: Wed Jul 15 09:51:37 PDT 2015 CLIENT IP ADDRESS: ipaddress SERVER IP ADDRESS: servername.tacomacc.edu ============================================================= 2015-07-15 09:51:37,207 WARN [org.jasig.cas.web.view.CasReloadableMessageBundle] - The code [authenticationFailure.UNKNOWN] cannot be found in the default language bundle and will be used as the message itself. 2015-07-15 09:51:37,209 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor] - Extractor generated service for: https://servername.tacomacc.edu/uPortal/Login 2015-07-15 09:51:46,438 DEBUG [org.jasig.cas.authentication.LdapAuthenticationHandler] - Attempting LDAP authentication for rfountain+password 2015-07-15 09:51:46,443 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - Audit trail record BEGIN ============================================================= WHO: audit:unknown WHAT: supplied credentials: [rfountain+password] ACTION: AUTHENTICATION_FAILED APPLICATION: CAS WHEN: Wed Jul 15 09:51:46 PDT 2015 CLIENT IP ADDRESS: ipaddress SERVER IP ADDRESS: servername.tacomacc.edu ============================================================= 2015-07-15 09:51:46,443 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - Audit trail record BEGIN ============================================================= WHO: audit:unknown WHAT: 1 errors, 0 successes ACTION: TICKET_GRANTING_TICKET_NOT_CREATED APPLICATION: CAS WHEN: Wed Jul 15 09:51:46 PDT 2015 CLIENT IP ADDRESS: ipaddress SERVER IP ADDRESS: servername.tacomacc.edu ============================================================= 2015-07-15 09:51:46,444 WARN [org.jasig.cas.web.view.CasReloadableMessageBundle] - The code [authenticationFailure.UNKNOWN] cannot be found in the default language bundle and will be used as the message itself. 2015-07-15 09:51:46,446 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor] - Extractor generated service for: https://servername.tacomacc.edu/uPortal/Login From: Daniel Fisher [mailto:[email protected]] Sent: Wednesday, July 15, 2015 9:38 AM To: [email protected] Subject: Re: [cas-user] Inconsistant Ldap Authentication Failure On Wed, Jul 15, 2015 at 12:23 PM, Fountain, Rebecca <[email protected]<mailto:[email protected]>> wrote: Hi everyone! I have a new CAS 4.0 build that I am trying to launch. It is done except one annoying bug I can’t seem to resolve. I am using the ldapAuthenticationHandler with Direct Bind. Authentication is successful sometimes and other times I get an error authenticationFailure.UNKNOWN Can you post some logs that illustrate this problem with the org.ldaptive package in DEBUG? --Daniel Fisher -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
