Hi All,
I am using CAS 3.0.5 to authenticate user against an Active Directory
(User's userPrincipalName).
I am working on Windows XP with jdk1.4.2, Tomcat 5.0.28. I am not using
Secure Ldap Socket for now.
If I use the FastBindLdapAuthenticationHandler, authentication happens
fine with the filter: CN=%u,CN=users,DC=mydomain,DC=com
But here I have to provide the Common Name (CN) as username. It should
be the userPrincipalName to be provided for authentication.
The filter will then be:
userPrincipalName=%u,CN=users,DC=mydomain,DC=com
But this filter will not authenticate properly.
When I configure the "deployerConfigContext.xml" to use the
BindLdapAuthenticationHandler, CAS throws the following exception on
enter the credentials:
javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308:
LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 525,
v893 ]
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:2988)
at
com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2934)
at
com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2735)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2649)
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:290)
at
com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
at
com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
at
com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:
136)
at
com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:6
6)
at
javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:662)
at
javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:243)
at javax.naming.InitialContext.init(InitialContext.java:219)
at
javax.naming.ldap.InitialLdapContext.<init>(InitialLdapContext.java:133)
at
net.sf.ldaptemplate.support.LdapContextSource.getDirContextInstance(Ldap
ContextSource.java:45)
at
net.sf.ldaptemplate.support.AbstractContextSource.createContext(Abstract
ContextSource.java:194)
at
net.sf.ldaptemplate.support.AbstractContextSource.getReadOnlyContext(Abs
tractContextSource.java:105)
at
net.sf.ldaptemplate.LdapTemplate.search(LdapTemplate.java:194)
at
org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler.authenticateUs
ernamePasswordInternal(BindLdapAuthenticationHandler.java:71)
at
org.jasig.cas.authentication.handler.support.AbstractUsernamePasswordAut
henticationHandler.authenticate(AbstractUsernamePasswordAuthenticationHa
ndler.java:58)
at
org.jasig.cas.authentication.AuthenticationManagerImpl.authenticate(Auth
enticationManagerImpl.java:79)
at
org.jasig.cas.CentralAuthenticationServiceImpl.createTicketGrantingTicke
t(CentralAuthenticationServiceImpl.java:282)
at
org.jasig.cas.web.flow.AuthenticationViaFormAction.submit(Authentication
ViaFormAction.java:118)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.jav
a:39)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessor
Impl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at
org.springframework.webflow.util.DispatchMethodInvoker.invoke(DispatchMe
thodInvoker.java:87)
at
org.springframework.webflow.action.MultiAction.doExecute(MultiAction.jav
a:154)
at
org.springframework.webflow.action.AbstractAction.execute(AbstractAction
.java:217)
at
org.springframework.webflow.AnnotatedAction.execute(AnnotatedAction.java
:109)
at
org.springframework.webflow.ActionExecutor.execute(ActionExecutor.java:5
4)
at
org.springframework.webflow.ActionState.doEnter(ActionState.java:168)
at org.springframework.webflow.State.enter(State.java:192)
at
org.springframework.webflow.Transition.execute(Transition.java:216)
at
org.springframework.webflow.TransitionableState.onEvent(TransitionableSt
ate.java:80)
at org.springframework.webflow.Flow.onEvent(Flow.java:581)
at
org.springframework.webflow.execution.impl.FlowExecutionControlContextIm
pl.signalEvent(FlowExecutionControlContextImpl.java:199)
at
org.springframework.webflow.ActionState.doEnter(ActionState.java:172)
at org.springframework.webflow.State.enter(State.java:192)
at
org.springframework.webflow.Transition.execute(Transition.java:216)
at
org.springframework.webflow.TransitionableState.onEvent(TransitionableSt
ate.java:80)
at org.springframework.webflow.Flow.onEvent(Flow.java:581)
at
org.springframework.webflow.execution.impl.FlowExecutionControlContextIm
pl.signalEvent(FlowExecutionControlContextImpl.java:199)
at
org.springframework.webflow.execution.impl.FlowExecutionImpl.signalEvent
(FlowExecutionImpl.java:200)
at
org.springframework.webflow.executor.FlowExecutorImpl.signalEvent(FlowEx
ecutorImpl.java:172)
at
org.springframework.webflow.executor.support.FlowRequestHandler.handleFl
owRequest(FlowRequestHandler.java:103)
at
org.springframework.webflow.executor.mvc.FlowController.handleRequestInt
ernal(FlowController.java:198)
at
org.springframework.web.servlet.mvc.AbstractController.handleRequest(Abs
tractController.java:153)
at
org.springframework.web.servlet.mvc.SimpleControllerHandlerAdapter.handl
e(SimpleControllerHandlerAdapter.java:45)
at
org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherS
ervlet.java:798)
at
org.springframework.web.servlet.DispatcherServlet.doService(DispatcherSe
rvlet.java:728)
at
org.springframework.web.servlet.FrameworkServlet.processRequest(Framewor
kServlet.java:396)
at
org.springframework.web.servlet.FrameworkServlet.doPost(FrameworkServlet
.java:360)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:709)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
at
org.jasig.cas.web.init.SafeDispatcherServlet.service(SafeDispatcherServl
et.java:115)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applica
tionFilterChain.java:237)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilt
erChain.java:157)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValv
e.java:214)
at
org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveCo
ntext.java:104)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:5
20)
at
org.apache.catalina.core.StandardContextValve.invokeInternal(StandardCon
textValve.java:198)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValv
e.java:152)
at
org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveCo
ntext.java:104)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:5
20)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java
:137)
at
org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveCo
ntext.java:104)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java
:118)
at
org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveCo
ntext.java:102)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:5
20)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.
java:109)
at
org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveCo
ntext.java:104)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:5
20)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:929)
at
org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:79
9)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processC
onnection(Http11Protocol.java:705)
at
org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:57
7)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool
.java:683)
at java.lang.Thread.run(Thread.java:534)
Can I resolve the same by upgrading to CAS 3.0.6?
Any help in resolving these issues will be greatly appreciated.
Thanks and Regards,
Janeve George
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
