hello Scott,
maybe i am wrong but
- when you say if the certificate is in the jvm keystore you want to say
that i install the certificate in the browser? the answer is yes
- the certificate cn is localhost and i do this:
http:\\localhost:8084\cas
Sorry for my easy doubts
Thank in advance
>From: "Scott Battaglia" <[EMAIL PROTECTED]>
>Reply-To: Yale CAS mailing list <[email protected]>
>To: "Yale CAS mailing list" <[email protected]>
>Subject: Re: LDAP problems
>Date: Tue, 26 Sep 2006 13:43:08 -0400
>MIME-Version: 1.0
>Received: from pantheon-po12.its.yale.edu ([130.132.50.70]) by
>bay0-mc8-f14.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2444); Tue,
>26 Sep 2006 10:47:21 -0700
>Received: from tp.its.yale.edu (tp.its.yale.edu [130.132.59.225])by
>pantheon-po12.its.yale.edu (8.12.11.20060308/8.12.11) with ESMTP id
>k8QHiB48004247;Tue, 26 Sep 2006 13:44:16 -0400
>Received: from mr4.its.yale.edu (mr4.its.yale.edu [130.132.50.10])by
>tp.its.yale.edu (8.13.1/8.13.1) with ESMTP id k8QHi91v007941for
><[email protected]>; Tue, 26 Sep 2006 13:44:09 -0400
>Received: from py-out-1112.google.com (py-out-1112.google.com
>[64.233.166.180])by mr4.its.yale.edu (8.12.11.20060308/8.12.11) with ESMTP
>idk8QHi9PG021187for <[email protected]>; Tue, 26 Sep 2006 13:44:09 -0400
>Received: by py-out-1112.google.com with SMTP id w49so2748249pygfor
><[email protected]>; Tue, 26 Sep 2006 10:43:09 -0700 (PDT)
>Received: by 10.35.51.19 with SMTP id d19mr1283397pyk;Tue, 26 Sep 2006
>10:43:08 -0700 (PDT)
>Received: by 10.35.69.14 with HTTP; Tue, 26 Sep 2006 10:43:08 -0700 (PDT)
>X-Message-Info: LsUYwwHHNt25vOw9vFsrJ2kwDJMn6CHbd3uOCClBlts=
>DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta;
>d=gmail.com;h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references;b=PQNaxmWAp98/inwLFJgCkdgRbNXDI6wyz2CMAPzFDO9IJ5JgMxzgZcgusm4pchQnWgHYmDDSJ7MFhornQIiptxisTrUXtUH2DFzR/ap9V33psBKn5IsrB3k36x96d/5dCswNDgCeH0kUD1fKTE7Cx+kyXX7aykdH0LPwibPbH2U=
>References:
><[EMAIL PROTECTED]><[EMAIL PROTECTED]>
>X-YaleITSMailFilter: Version 1.2c (attachment(s) not renamed)
>X-Yale-Not-Spam: For more info see:
>http://www.yale.edu/email/spam/content.html
>X-Yale-Spam-Score: (0)
>X-Scanned-By: MIMEDefang 2.52 on 130.132.50.10
>X-BeenThere: [email protected]
>X-Mailman-Version: 2.1.6
>Precedence: list
>List-Id: Yale CAS mailing list <cas.tp.its.yale.edu>
>List-Unsubscribe:
><http://tp.its.yale.edu/mailman/listinfo/cas>,<mailto:[EMAIL PROTECTED]>
>List-Archive: <http://tp.its.yale.edu/pipermail/cas>
>List-Post: <mailto:[email protected]>
>List-Help: <mailto:[EMAIL PROTECTED]>
>List-Subscribe:
><http://tp.its.yale.edu/mailman/listinfo/cas>,<mailto:[EMAIL PROTECTED]>
>Errors-To: [EMAIL PROTECTED]
>Return-Path: [EMAIL PROTECTED]
>X-OriginalArrivalTime: 26 Sep 2006 17:47:21.0839 (UTC)
>FILETIME=[D1875FF0:01C6E193]
>
>Is the certificate in the JVM keystore? Does the host name in the url
>match
>the cn?
>
>-Scott
>
>On 9/26/06, kike velez <[EMAIL PROTECTED]> wrote:
>>
>>hello,
>>
>>I have a certificate with cn = localhost in the jvm. But the problem is
>>the
>>same.
>>
>>Is a configuration problem? or I am missing something.
>>
>>Thanks in advance.
>>
>>
>> >From: "kike velez" <[EMAIL PROTECTED]>
>> >Reply-To: Yale CAS mailing list <[email protected]>
>> >To: [email protected]
>> >Subject: LDAP problems
>> >Date: Fri, 22 Sep 2006 14:16:49 +0200
>> >MIME-Version: 1.0
>> >X-Originating-IP: [194.179.55.34]
>> >X-Originating-Email: [EMAIL PROTECTED]
>> >X-Sender: [EMAIL PROTECTED]
>> >Received: from pantheon-po11.its.yale.edu ([130.132.50.69]) by
>> >bay0-mc4-f16.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2444);
>>Fri,
>> >22 Sep 2006 05:26:39 -0700
>> >Received: from tp.its.yale.edu (tp.its.yale.edu [130.132.59.225])by
>> >pantheon-po11.its.yale.edu (8.12.11.20060308/8.12.11) with ESMTP id
>> >k8MCHGUr029455;Fri, 22 Sep 2006 08:17:51 -0400
>> >Received: from mr2.its.yale.edu (mr2.its.yale.edu [130.132.50.8])by
>> >tp.its.yale.edu (8.13.1/8.13.1) with ESMTP id k8MCHF3c009088for
>> ><[email protected]>; Fri, 22 Sep 2006 08:17:15 -0400
>> >Received: from bay0-omc3-s5.bay0.hotmail.com
>> >(bay0-omc3-s5.bay0.hotmail.com[65.54.246.205])by mr2.its.yale.edu
>> >(8.12.11.20060308/8.12.11) with ESMTP idk8MCHEDa026067for
>> ><[email protected]>; Fri, 22 Sep 2006 08:17:14 -0400
>> >Received: from hotmail.com ([65.55.131.87]) by
>> >bay0-omc3-s5.bay0.hotmail.comwith Microsoft SMTPSVC(6.0.3790.1830); Fri,
>>22
>> >Sep 2006 05:16:52 -0700
>> >Received: from mail pickup service by hotmail.com with Microsoft
>> >SMTPSVC;Fri, 22 Sep 2006 05:16:52 -0700
>> >Received: from 65.55.131.123 by by126fd.bay126.hotmail.msn.com with
>> >HTTP;Fri, 22 Sep 2006 12:16:49 GMT
>> >X-Message-Info: LsUYwwHHNt2vbVFS268RvVMP7Xihi/GL0crjTIse8ek=
>> >X-OriginalArrivalTime: 22 Sep 2006 12:16:52.0640
>> >(UTC)FILETIME=[FCC0BA00:01C6DE40]
>> >X-YaleITSMailFilter: Version 1.2c (attachment(s) not renamed)
>> >X-Yale-Not-Spam: For more info see:
>> >http://www.yale.edu/email/spam/content.html
>> >X-Yale-Spam-Score: (-0.001)
>> >X-Scanned-By: MIMEDefang 2.52 on 130.132.50.8
>> >X-BeenThere: [email protected]
>> >X-Mailman-Version: 2.1.6
>> >Precedence: list
>> >List-Id: Yale CAS mailing list <cas.tp.its.yale.edu>
>> >List-Unsubscribe:
>> ><http://tp.its.yale.edu/mailman/listinfo/cas>,<mailto:
>>[EMAIL PROTECTED]>
>> >List-Archive: <http://tp.its.yale.edu/pipermail/cas>
>> >List-Post: <mailto:[email protected]>
>> >List-Help: <mailto:[EMAIL PROTECTED]>
>> >List-Subscribe:
>> ><http://tp.its.yale.edu/mailman/listinfo/cas>,<mailto:
>>[EMAIL PROTECTED]>
>> >Errors-To: [EMAIL PROTECTED]
>> >Return-Path: [EMAIL PROTECTED]
>> >
>> >Hello,
>> >
>> >I have problems with ldap conection.
>> >
>> >I did this:
>> >
>> >- copy ldaptemplate.1.0.2.jar + cas_server_ldap_3.0.5.jar to
>> >localplugins/lib
>> >- i modify the file webapp/web-inf/deployerConfigContext.xml
>> >- ant jar
>> >- ant war
>> >- deploy to tomcat
>> >
>> >My company ldap is somethig like this:
>> >
>> >a01.xx.yy.zz
>> >a02.xx.yy.zz
>> >a03.xx.yy.zz
>> >............
>> >a20.xx.yy.zz
>> >
>> >I start with FastBindLdapAuthenticationHandler to test my ldap conection
>> >with a user in A01.xx.yy.zz
>> >This is my deployerConfigContext:
>> ><?xml version="1.0" encoding="UTF-8"?>
>> ><!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN"
>> >"http://www.springframework.org/dtd/spring-beans.dtd";>
>> ><beans>
>> >
>> > <bean id="authenticationManager"
>> > class="
>>org.jasig.cas.authentication.AuthenticationManagerImpl">
>> >
>> > <property name="credentialsToPrincipalResolvers">
>> > <list>
>> >
>> > <bean
>> > class="
>>org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver
>>"
>> >/>
>> >
>> > <bean
>> > class="
>>org.jasig.cas.authentication.principal.HttpBasedServiceCredentialsToPrincipalResolver
>>"
>> >/>
>> > </list>
>> > </property>
>> >
>> >
>> > <property name="authenticationHandlers">
>> > <list>
>> >
>> > <bean
>> > class="
>>org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler" >
>> > <property name="filter"
>> >value="uid=%u,ou=A01,ou=xx,ou=yy,o=zz" />
>> > <property name="contextSource"
>> >ref="contextSource" />
>> > </bean>
>> > </list>
>> ></property>
>> >
>> >
>> >
>> > </bean>
>> >
>> > <bean id="contextSource"
>> >class="org.jasig.cas.adaptors.ldap.util.AuthenticatedLdapContextSource">
>> > <property name="urls">
>> > <list>
>> >
>> ><value>ldap://dirIPofMyServerLdap:389/</value>
>> >
>> > </list>
>> > </property>
>> > </bean>
>> >
>> >
>> ></beans>
>> >
>> >After deploy to test i use this url: http://localhost:8084/cas to login
>> >
>> >But always i received error.authentication.credentials.bad
>> >and i donĀ“t know why.
>> >I use the same information with acegi-ldap and i have no problems.
>> >
>> >What i am doing wrong?
>> >
>> >Thanks in advance
>> >
>> >
>> >_______________________________________________
>> >Yale CAS mailing list
>> >[email protected]
>> >http://tp.its.yale.edu/mailman/listinfo/cas
>>
>>
>>_______________________________________________
>>Yale CAS mailing list
>>[email protected]
>>http://tp.its.yale.edu/mailman/listinfo/cas
>>
>_______________________________________________
>Yale CAS mailing list
>[email protected]
>http://tp.its.yale.edu/mailman/listinfo/cas
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
