I think i do a mistake my apologies :

The certifcate is on the jvm keytore becouse i do :

keytool -list -alias tomcat -keystore "%java_home%/.../cacerts"

I see the certificate.

And the cn of the certificate is localhost .

Thanks in advance


>From: "kike velez" <[EMAIL PROTECTED]>
>Reply-To: Yale CAS mailing list <[email protected]>
>To: [email protected]
>Subject: Re: LDAP problems
>Date: Tue, 26 Sep 2006 21:28:58 +0200
>MIME-Version: 1.0
>X-Originating-IP: [80.102.195.116]
>X-Originating-Email: [EMAIL PROTECTED]
>X-Sender: [EMAIL PROTECTED]
>Received: from pantheon-po11.its.yale.edu ([130.132.50.69]) by 
>bay0-mc1-f6.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2444); Tue, 26 
>Sep 2006 12:31:58 -0700
>Received: from tp.its.yale.edu (tp.its.yale.edu [130.132.59.225])by 
>pantheon-po11.its.yale.edu (8.12.11.20060308/8.12.11) with ESMTP id 
>k8QJTVfu027945;Tue, 26 Sep 2006 15:29:44 -0400
>Received: from mr4.its.yale.edu (mr4.its.yale.edu [130.132.50.10])by 
>tp.its.yale.edu (8.13.1/8.13.1) with ESMTP id k8QJTSVq008338for 
><[email protected]>; Tue, 26 Sep 2006 15:29:28 -0400
>Received: from bay0-omc1-s30.bay0.hotmail.com 
>(bay0-omc1-s30.bay0.hotmail.com[65.54.246.102])by mr4.its.yale.edu 
>(8.12.11.20060308/8.12.11) with ESMTP idk8QJTR4t028543for 
><[email protected]>; Tue, 26 Sep 2006 15:29:27 -0400
>Received: from hotmail.com ([65.55.131.111]) by 
>bay0-omc1-s30.bay0.hotmail.comwith Microsoft SMTPSVC(6.0.3790.1830); Tue, 
>26 Sep 2006 12:29:06 -0700
>Received: from mail pickup service by hotmail.com with Microsoft 
>SMTPSVC;Tue, 26 Sep 2006 12:29:03 -0700
>Received: from 65.55.131.123 by by126fd.bay126.hotmail.msn.com with 
>HTTP;Tue, 26 Sep 2006 19:28:58 GMT
>X-Message-Info: LsUYwwHHNt0cZohkYvu8r9UXPiSAwxcEC2bfdx78UpI=
>X-OriginalArrivalTime: 26 Sep 2006 19:29:03.0147 
>(UTC)FILETIME=[063117B0:01C6E1A2]
>X-YaleITSMailFilter: Version 1.2c (attachment(s) not renamed)
>X-Yale-Not-Spam: For more info see: 
>http://www.yale.edu/email/spam/content.html
>X-Yale-Spam-Score: (-0.001)
>X-Scanned-By: MIMEDefang 2.52 on 130.132.50.10
>X-BeenThere: [email protected]
>X-Mailman-Version: 2.1.6
>Precedence: list
>List-Id: Yale CAS mailing list <cas.tp.its.yale.edu>
>List-Unsubscribe: 
><http://tp.its.yale.edu/mailman/listinfo/cas>,<mailto:[EMAIL PROTECTED]>
>List-Archive: <http://tp.its.yale.edu/pipermail/cas>
>List-Post: <mailto:[email protected]>
>List-Help: <mailto:[EMAIL PROTECTED]>
>List-Subscribe: 
><http://tp.its.yale.edu/mailman/listinfo/cas>,<mailto:[EMAIL PROTECTED]>
>Errors-To: [EMAIL PROTECTED]
>Return-Path: [EMAIL PROTECTED]
>
>hello Scott,
>
>maybe i am wrong but
>
>- when you say if the certificate is in the jvm keystore you want to say
>that i install the certificate in the browser? the answer is yes
>
>- the certificate cn is localhost and i do this:
>
>     http:\\localhost:8084\cas
>
>
>Sorry for my easy doubts
>
>Thank in advance
>
> >From: "Scott Battaglia" <[EMAIL PROTECTED]>
> >Reply-To: Yale CAS mailing list <[email protected]>
> >To: "Yale CAS mailing list" <[email protected]>
> >Subject: Re: LDAP problems
> >Date: Tue, 26 Sep 2006 13:43:08 -0400
> >MIME-Version: 1.0
> >Received: from pantheon-po12.its.yale.edu ([130.132.50.70]) by
> >bay0-mc8-f14.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2444); Tue,
> >26 Sep 2006 10:47:21 -0700
> >Received: from tp.its.yale.edu (tp.its.yale.edu [130.132.59.225])by
> >pantheon-po12.its.yale.edu (8.12.11.20060308/8.12.11) with ESMTP id
> >k8QHiB48004247;Tue, 26 Sep 2006 13:44:16 -0400
> >Received: from mr4.its.yale.edu (mr4.its.yale.edu [130.132.50.10])by
> >tp.its.yale.edu (8.13.1/8.13.1) with ESMTP id k8QHi91v007941for
> ><[email protected]>; Tue, 26 Sep 2006 13:44:09 -0400
> >Received: from py-out-1112.google.com (py-out-1112.google.com
> >[64.233.166.180])by mr4.its.yale.edu (8.12.11.20060308/8.12.11) with 
>ESMTP
> >idk8QHi9PG021187for <[email protected]>; Tue, 26 Sep 2006 13:44:09 
>-0400
> >Received: by py-out-1112.google.com with SMTP id w49so2748249pygfor
> ><[email protected]>; Tue, 26 Sep 2006 10:43:09 -0700 (PDT)
> >Received: by 10.35.51.19 with SMTP id d19mr1283397pyk;Tue, 26 Sep 2006
> >10:43:08 -0700 (PDT)
> >Received: by 10.35.69.14 with HTTP; Tue, 26 Sep 2006 10:43:08 -0700 (PDT)
> >X-Message-Info: LsUYwwHHNt25vOw9vFsrJ2kwDJMn6CHbd3uOCClBlts=
> >DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta;
> >d=gmail.com;h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references;b=PQNaxmWAp98/inwLFJgCkdgRbNXDI6wyz2CMAPzFDO9IJ5JgMxzgZcgusm4pchQnWgHYmDDSJ7MFhornQIiptxisTrUXtUH2DFzR/ap9V33psBKn5IsrB3k36x96d/5dCswNDgCeH0kUD1fKTE7Cx+kyXX7aykdH0LPwibPbH2U=
> >References:
> ><[EMAIL PROTECTED]><[EMAIL PROTECTED]>
> >X-YaleITSMailFilter: Version 1.2c (attachment(s) not renamed)
> >X-Yale-Not-Spam: For more info see:
> >http://www.yale.edu/email/spam/content.html
> >X-Yale-Spam-Score: (0)
> >X-Scanned-By: MIMEDefang 2.52 on 130.132.50.10
> >X-BeenThere: [email protected]
> >X-Mailman-Version: 2.1.6
> >Precedence: list
> >List-Id: Yale CAS mailing list <cas.tp.its.yale.edu>
> >List-Unsubscribe:
> ><http://tp.its.yale.edu/mailman/listinfo/cas>,<mailto:[EMAIL PROTECTED]>
> >List-Archive: <http://tp.its.yale.edu/pipermail/cas>
> >List-Post: <mailto:[email protected]>
> >List-Help: <mailto:[EMAIL PROTECTED]>
> >List-Subscribe:
> ><http://tp.its.yale.edu/mailman/listinfo/cas>,<mailto:[EMAIL PROTECTED]>
> >Errors-To: [EMAIL PROTECTED]
> >Return-Path: [EMAIL PROTECTED]
> >X-OriginalArrivalTime: 26 Sep 2006 17:47:21.0839 (UTC)
> >FILETIME=[D1875FF0:01C6E193]
> >
> >Is the certificate in the JVM keystore?  Does the host name in the url
> >match
> >the cn?
> >
> >-Scott
> >
> >On 9/26/06, kike velez <[EMAIL PROTECTED]> wrote:
> >>
> >>hello,
> >>
> >>I have a certificate with cn = localhost in the jvm. But the problem is
> >>the
> >>same.
> >>
> >>Is a configuration problem? or I am missing something.
> >>
> >>Thanks in advance.
> >>
> >>
> >> >From: "kike velez" <[EMAIL PROTECTED]>
> >> >Reply-To: Yale CAS mailing list <[email protected]>
> >> >To: [email protected]
> >> >Subject: LDAP problems
> >> >Date: Fri, 22 Sep 2006 14:16:49 +0200
> >> >MIME-Version: 1.0
> >> >X-Originating-IP: [194.179.55.34]
> >> >X-Originating-Email: [EMAIL PROTECTED]
> >> >X-Sender: [EMAIL PROTECTED]
> >> >Received: from pantheon-po11.its.yale.edu ([130.132.50.69]) by
> >> >bay0-mc4-f16.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2444);
> >>Fri,
> >> >22 Sep 2006 05:26:39 -0700
> >> >Received: from tp.its.yale.edu (tp.its.yale.edu [130.132.59.225])by
> >> >pantheon-po11.its.yale.edu (8.12.11.20060308/8.12.11) with ESMTP id
> >> >k8MCHGUr029455;Fri, 22 Sep 2006 08:17:51 -0400
> >> >Received: from mr2.its.yale.edu (mr2.its.yale.edu [130.132.50.8])by
> >> >tp.its.yale.edu (8.13.1/8.13.1) with ESMTP id k8MCHF3c009088for
> >> ><[email protected]>; Fri, 22 Sep 2006 08:17:15 -0400
> >> >Received: from bay0-omc3-s5.bay0.hotmail.com
> >> >(bay0-omc3-s5.bay0.hotmail.com[65.54.246.205])by mr2.its.yale.edu
> >> >(8.12.11.20060308/8.12.11) with ESMTP idk8MCHEDa026067for
> >> ><[email protected]>; Fri, 22 Sep 2006 08:17:14 -0400
> >> >Received: from hotmail.com ([65.55.131.87]) by
> >> >bay0-omc3-s5.bay0.hotmail.comwith Microsoft SMTPSVC(6.0.3790.1830); 
>Fri,
> >>22
> >> >Sep 2006 05:16:52 -0700
> >> >Received: from mail pickup service by hotmail.com with Microsoft
> >> >SMTPSVC;Fri, 22 Sep 2006 05:16:52 -0700
> >> >Received: from 65.55.131.123 by by126fd.bay126.hotmail.msn.com with
> >> >HTTP;Fri, 22 Sep 2006 12:16:49 GMT
> >> >X-Message-Info: LsUYwwHHNt2vbVFS268RvVMP7Xihi/GL0crjTIse8ek=
> >> >X-OriginalArrivalTime: 22 Sep 2006 12:16:52.0640
> >> >(UTC)FILETIME=[FCC0BA00:01C6DE40]
> >> >X-YaleITSMailFilter: Version 1.2c (attachment(s) not renamed)
> >> >X-Yale-Not-Spam: For more info see:
> >> >http://www.yale.edu/email/spam/content.html
> >> >X-Yale-Spam-Score: (-0.001)
> >> >X-Scanned-By: MIMEDefang 2.52 on 130.132.50.8
> >> >X-BeenThere: [email protected]
> >> >X-Mailman-Version: 2.1.6
> >> >Precedence: list
> >> >List-Id: Yale CAS mailing list <cas.tp.its.yale.edu>
> >> >List-Unsubscribe:
> >> ><http://tp.its.yale.edu/mailman/listinfo/cas>,<mailto:
> >>[EMAIL PROTECTED]>
> >> >List-Archive: <http://tp.its.yale.edu/pipermail/cas>
> >> >List-Post: <mailto:[email protected]>
> >> >List-Help: <mailto:[EMAIL PROTECTED]>
> >> >List-Subscribe:
> >> ><http://tp.its.yale.edu/mailman/listinfo/cas>,<mailto:
> >>[EMAIL PROTECTED]>
> >> >Errors-To: [EMAIL PROTECTED]
> >> >Return-Path: [EMAIL PROTECTED]
> >> >
> >> >Hello,
> >> >
> >> >I have problems with ldap conection.
> >> >
> >> >I did this:
> >> >
> >> >- copy ldaptemplate.1.0.2.jar + cas_server_ldap_3.0.5.jar to
> >> >localplugins/lib
> >> >- i modify the file webapp/web-inf/deployerConfigContext.xml
> >> >- ant jar
> >> >- ant war
> >> >- deploy to tomcat
> >> >
> >> >My company ldap is somethig like this:
> >> >
> >> >a01.xx.yy.zz
> >> >a02.xx.yy.zz
> >> >a03.xx.yy.zz
> >> >............
> >> >a20.xx.yy.zz
> >> >
> >> >I start with FastBindLdapAuthenticationHandler to test my ldap 
>conection
> >> >with a user in A01.xx.yy.zz
> >> >This is my deployerConfigContext:
> >> ><?xml version="1.0" encoding="UTF-8"?>
> >> ><!DOCTYPE beans PUBLIC  "-//SPRING//DTD BEAN//EN"
> >> >"http://www.springframework.org/dtd/spring-beans.dtd";>
> >> ><beans>
> >> >
> >> >       <bean id="authenticationManager"
> >> >               class="
> >>org.jasig.cas.authentication.AuthenticationManagerImpl">
> >> >
> >> >               <property name="credentialsToPrincipalResolvers">
> >> >                       <list>
> >> >
> >> >                               <bean
> >> >                                       class="
> >>org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver
> >>"
> >> >/>
> >> >
> >> >                               <bean
> >> >                                       class="
> >>org.jasig.cas.authentication.principal.HttpBasedServiceCredentialsToPrincipalResolver
> >>"
> >> >/>
> >> >                       </list>
> >> >               </property>
> >> >
> >> >
> >> >               <property name="authenticationHandlers">
> >> >       <list>
> >> >
> >> >               <bean
> >> >                       class="
> >>org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler" >
> >> >                                 <property name="filter"
> >> >value="uid=%u,ou=A01,ou=xx,ou=yy,o=zz" />
> >> >                                 <property name="contextSource"
> >> >ref="contextSource" />
> >> >               </bean>
> >> >       </list>
> >> ></property>
> >> >
> >> >
> >> >
> >> >       </bean>
> >> >
> >> >       <bean id="contextSource"
> >> 
> >class="org.jasig.cas.adaptors.ldap.util.AuthenticatedLdapContextSource">
> >> >                  <property name="urls">
> >> >                          <list>
> >> >
> >> ><value>ldap://dirIPofMyServerLdap:389/</value>
> >> >
> >> >                          </list>
> >> >               </property>
> >> >       </bean>
> >> >
> >> >
> >> ></beans>
> >> >
> >> >After deploy to test i use this url: http://localhost:8084/cas to 
>login
> >> >
> >> >But always i received error.authentication.credentials.bad
> >> >and i don“t know why.
> >> >I use the same information with acegi-ldap and i have no problems.
> >> >
> >> >What i am doing wrong?
> >> >
> >> >Thanks in advance
> >> >
> >> >
> >> >_______________________________________________
> >> >Yale CAS mailing list
> >> >[email protected]
> >> >http://tp.its.yale.edu/mailman/listinfo/cas
> >>
> >>
> >>_______________________________________________
> >>Yale CAS mailing list
> >>[email protected]
> >>http://tp.its.yale.edu/mailman/listinfo/cas
> >>
>
>
> >_______________________________________________
> >Yale CAS mailing list
> >[email protected]
> >http://tp.its.yale.edu/mailman/listinfo/cas
>
>
>_______________________________________________
>Yale CAS mailing list
>[email protected]
>http://tp.its.yale.edu/mailman/listinfo/cas


_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas

Reply via email to