Re: HELP!!! Problems with FastBindLdapAuthenticationHandler and BindLdapAuthenticationHandler in CAS 3.0.5

Tue, 09 Jan 2007 05:33:58 -0800 

I did a quick Google search (I am not familiar with Active Directory) and
came up with this:

http://forum.java.sun.com/thread.jspa?messageID=4227692

Not sure if it helps.
-Scott

On 1/9/07, George, Janeve <[EMAIL PROTECTED]> wrote:



Hi All,

I am using CAS 3.0.5 to authenticate user against an Active Directory
(User's userPrincipalName).

I am working on Windows XP with jdk1.4.2, Tomcat 5.0.28. I am not using
Secure Ldap Socket for now.

If I use the FastBindLdapAuthenticationHandler, authentication happens
fine with the filter: CN=%u,CN=users,DC=mydomain,DC=com

But here I have to provide the Common Name (CN) as username. It should be
the userPrincipalName to be provided for authentication.

The filter will then be: userPrincipalName=%u,CN=users,DC=mydomain,DC=com
But this filter will not authenticate properly.

When I configure the "deployerConfigContext.xml" to use the
BindLdapAuthenticationHandler, CAS throws the following exception on enter
the credentials:

javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308:
LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 525, v893
]

        at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:2988)
        at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2934)
        at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2735)
        at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2649)
        at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:290)
        at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(
LdapCtxFactory.java:175)
        at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(
LdapCtxFactory.java:193)
        at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(
LdapCtxFactory.java:136)
        at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(
LdapCtxFactory.java:66)
        at javax.naming.spi.NamingManager.getInitialContext(
NamingManager.java:662)
        at javax.naming.InitialContext.getDefaultInitCtx(
InitialContext.java:243)
        at javax.naming.InitialContext.init(InitialContext.java:219)
        at javax.naming.ldap.InitialLdapContext.<init>(
InitialLdapContext.java:133)
        at
net.sf.ldaptemplate.support.LdapContextSource.getDirContextInstance(
LdapContextSource.java:45)
        at net.sf.ldaptemplate.support.AbstractContextSource.createContext
(AbstractContextSource.java:194)
        at
net.sf.ldaptemplate.support.AbstractContextSource.getReadOnlyContext(
AbstractContextSource.java:105)
        at net.sf.ldaptemplate.LdapTemplate.search(LdapTemplate.java:194)
        at
org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler.authenticateUsernamePasswordInternal
(BindLdapAuthenticationHandler.java:71)

        at
org.jasig.cas.authentication.handler.support.AbstractUsernamePasswordAuthenticationHandler.authenticate
(AbstractUsernamePasswordAuthenticationHandler.java:58)

        at
org.jasig.cas.authentication.AuthenticationManagerImpl.authenticate(
AuthenticationManagerImpl.java:79)
        at
org.jasig.cas.CentralAuthenticationServiceImpl.createTicketGrantingTicket(
CentralAuthenticationServiceImpl.java:282)

        at org.jasig.cas.web.flow.AuthenticationViaFormAction.submit(
AuthenticationViaFormAction.java:118)
        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at sun.reflect.NativeMethodAccessorImpl.invoke(
NativeMethodAccessorImpl.java:39)
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(
DelegatingMethodAccessorImpl.java:25)
        at java.lang.reflect.Method.invoke(Method.java:324)
        at org.springframework.webflow.util.DispatchMethodInvoker.invoke(
DispatchMethodInvoker.java:87)
        at org.springframework.webflow.action.MultiAction.doExecute(
MultiAction.java:154)
        at org.springframework.webflow.action.AbstractAction.execute(
AbstractAction.java:217)
        at org.springframework.webflow.AnnotatedAction.execute(
AnnotatedAction.java:109)
        at org.springframework.webflow.ActionExecutor.execute(
ActionExecutor.java:54)
        at org.springframework.webflow.ActionState.doEnter(
ActionState.java:168)
        at org.springframework.webflow.State.enter(State.java:192)
        at org.springframework.webflow.Transition.execute(Transition.java
:216)
        at org.springframework.webflow.TransitionableState.onEvent(
TransitionableState.java:80)
        at org.springframework.webflow.Flow.onEvent(Flow.java:581)
        at
org.springframework.webflow.execution.impl.FlowExecutionControlContextImpl.signalEvent
(FlowExecutionControlContextImpl.java:199)

        at org.springframework.webflow.ActionState.doEnter(
ActionState.java:172)
        at org.springframework.webflow.State.enter(State.java:192)
        at org.springframework.webflow.Transition.execute(Transition.java
:216)
        at org.springframework.webflow.TransitionableState.onEvent(
TransitionableState.java:80)
        at org.springframework.webflow.Flow.onEvent(Flow.java:581)
        at
org.springframework.webflow.execution.impl.FlowExecutionControlContextImpl.signalEvent
(FlowExecutionControlContextImpl.java:199)

        at
org.springframework.webflow.execution.impl.FlowExecutionImpl.signalEvent(
FlowExecutionImpl.java:200)
        at
org.springframework.webflow.executor.FlowExecutorImpl.signalEvent(
FlowExecutorImpl.java:172)
        at
org.springframework.webflow.executor.support.FlowRequestHandler.handleFlowRequest
(FlowRequestHandler.java:103)

        at
org.springframework.webflow.executor.mvc.FlowController.handleRequestInternal
(FlowController.java:198)
        at
org.springframework.web.servlet.mvc.AbstractController.handleRequest(
AbstractController.java:153)
        at
org.springframework.web.servlet.mvc.SimpleControllerHandlerAdapter.handle(
SimpleControllerHandlerAdapter.java:45)

        at org.springframework.web.servlet.DispatcherServlet.doDispatch(
DispatcherServlet.java:798)
        at org.springframework.web.servlet.DispatcherServlet.doService(
DispatcherServlet.java:728)
        at org.springframework.web.servlet.FrameworkServlet.processRequest
(FrameworkServlet.java:396)
        at org.springframework.web.servlet.FrameworkServlet.doPost(
FrameworkServlet.java:360)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:709)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
        at org.jasig.cas.web.init.SafeDispatcherServlet.service(
SafeDispatcherServlet.java:115)
        at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(
ApplicationFilterChain.java:237)
        at org.apache.catalina.core.ApplicationFilterChain.doFilter(
ApplicationFilterChain.java:157)
        at org.apache.catalina.core.StandardWrapperValve.invoke(
StandardWrapperValve.java:214)
        at org.apache.catalina.core.StandardValveContext.invokeNext(
StandardValveContext.java:104)
        at org.apache.catalina.core.StandardPipeline.invoke(
StandardPipeline.java:520)
        at org.apache.catalina.core.StandardContextValve.invokeInternal(
StandardContextValve.java:198)
        at org.apache.catalina.core.StandardContextValve.invoke(
StandardContextValve.java:152)
        at org.apache.catalina.core.StandardValveContext.invokeNext(
StandardValveContext.java:104)
        at org.apache.catalina.core.StandardPipeline.invoke(
StandardPipeline.java:520)
        at org.apache.catalina.core.StandardHostValve.invoke(
StandardHostValve.java:137)
        at org.apache.catalina.core.StandardValveContext.invokeNext(
StandardValveContext.java:104)
        at org.apache.catalina.valves.ErrorReportValve.invoke(
ErrorReportValve.java:118)
        at org.apache.catalina.core.StandardValveContext.invokeNext(
StandardValveContext.java:102)
        at org.apache.catalina.core.StandardPipeline.invoke(
StandardPipeline.java:520)
        at org.apache.catalina.core.StandardEngineValve.invoke(
StandardEngineValve.java:109)
        at org.apache.catalina.core.StandardValveContext.invokeNext(
StandardValveContext.java:104)
        at org.apache.catalina.core.StandardPipeline.invoke(
StandardPipeline.java:520)
        at org.apache.catalina.core.ContainerBase.invoke(
ContainerBase.java:929)
        at org.apache.coyote.tomcat5.CoyoteAdapter.service(
CoyoteAdapter.java:160)
        at org.apache.coyote.http11.Http11Processor.process(
Http11Processor.java:799)
        at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection
(Http11Protocol.java:705)
        at org.apache.tomcat.util.net.TcpWorkerThread.runIt(
PoolTcpEndpoint.java:577)
        at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(
ThreadPool.java:683)
        at java.lang.Thread.run(Thread.java:534)

Can I resolve the same by upgrading to CAS 3.0.6?

Any help in resolving these issues will be greatly appreciated.

Thanks and Regards,
*Janeve George*

_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas




_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas

Reply via email to