|
Thanks a lot Scott, it now works well thanks
to the referral option. I'm able to attack the whole AD tree, not just a single
OU.
My tutorial is currently a big Word document
but it contains everything from setting up the tomcat server to doing the CAS to
AD connection. I'm going to extract the relevant info and put it
somewhere.
Regards,
Laurent
----- Original Message -----
Sent: Friday, October 20, 2006 2:34
PM
Subject: Re: ActiveDirectory 2003 and the
referrals option
The IgnorePartialResultException can be set on
the authentication handler itself. Its in newer versions of the LDAP
authentication handlers.
The referral option is set on the
ContextSource. You can have a property called baseEnvironmentProperties
that takes a map. Look here http://developer.ja-sig.org/source/browse/jasig/cas3/cas-server-support-ldap/src/main/resources/deployerConfigContext.xml?r=1.1
for an example of it (it doesn't have the exact property you are
using).
That would be great if you could write something up after you
are done!
Thanks
-Scott
On 10/20/06, Laurent
Domenech <[EMAIL PROTECTED]> wrote:
Hi Scott,
Thanks for your mail. Yes, setting the
ignorePartialResultException was what I was trying to do. However; I'm at a
loss as to where this should go. I've tried to put
<property name="
ignorePartialResultException" value="true" />
inside the authenticationHandlers property
and inside the contextSource bean, but it failed on both.
Any idea where I should put this? Same question
for the follow referral
options...
As to writing a tutorial, I'm writing one as I
progress in this setup so I'll be glad to translate it and make it available
online if this can help.
Regards,
Laurent
-----
Original Message -----
Sent:
Friday, October 20, 2006 1:44 PM
Subject:
Re: ActiveDirectory 2003 and the referrals option
You can set the property on the LdapTemplate to ignore
partial referral results. I think Velpi would be able to answer this
better.
There is also a follow referral options:
<entry>
<key><value>
java.naming.referral</value></key>
<value>follow</value>
</entry>
I do not know enough about Active Directory to know what this affects though. It would be great if someone who has successfully configured an Active Directory could write a short tutorial.
-Scott
On 10/20/06, Laurent Domenech <[EMAIL PROTECTED]> wrote:
Hi
there,
I'm still working on my CAS to AD 2003/ldaps setup.
Apparently, from what
one of our network admin said, there is an
issue with Active Directory 2003
that requires the ldap client to set
the referrals option in order to
connect properly.
How do we
set this option? Am I the only one to use MS Active Directory
(on
Windows 2003 Server)?
This issue is driving me nuts. Any
help will be gretly
appreciated.
Thanks,
Laurent
_______________________________________________
Yale
CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
_______________________________________________
Yale CAS mailing
list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
_______________________________________________
Yale
CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
_______________________________________________
Yale CAS mailing
list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
|
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
