Scott,
I changed my URLs entry in deployerConfig.xml because CAS server is in my PC
and LDAP server is an Organisational one and it is in a different IP. So i gave
that IP in my URLs list.
In CAS login page, when i enter my credentials and click on LOGIN, i get this
exception
" LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment:
AcceptSecurityContext error " in console.
What could be the reason.
Thanks
Scott Battaglia <[EMAIL PROTECTED]> wrote: Unless your LDAP server and CAS are
on the same machine you don't want to use localhost as the server name. Also,
this is just a guess, but your searchbase of "cn=Admin
Annuity,OU=MUMBAI,OU=INDIA,OU=myCompanyusers,dc=myCompany,dc=com" might be too
specific.
-Scott
On 6/20/07, sriram purushothaman <[EMAIL PROTECTED]> wrote:
Scott,
Did you check my two XMLs. are they okay. I just want to know.
I am attaching a plain java program which does LDAP authentication correctly.
It authenticates the sAMAccountName (basically employee-id) which i give in the
program.
Please look at the value that is put for Context.PROVIDER_URL. Is this the IP
which i should give in my deployerConfig..xml for URLs property. Currently i
have given something like "localhost:389".
Please let me know.
Thanks
Scott Battaglia <[EMAIL PROTECTED] > wrote:
Yes, that login screen is correct (because you have not modified it at all).
The exception you are getting is that your LDAP server refused the connection
from the LDAP server. Your LDAP server may be behind a firewall or you may be
attempting to access it via an incorrect protocol ( i.e. ldap vs. ldaps) for
what you are trying to do. You may want to talk to your LDAP admins.
-Scott
On 6/20/07, sriram purushothaman < [EMAIL PROTECTED]> wrote:
Hi
I removed the CAS-FILTER related entries from my CAS web.xml. I am attaching
it as CAS-web.xml
I have added the CAS-FILTER related entries in my project's web.xml. I am
attaching it as project-web.xml
Now, When i give https://localhost:8443/cas/login, i get the Security-Alert
dialog box and when i click on YES, i get CAS login screen. I am attaching this
screen also here ( cas-login.doc). Is this the correct screen, because as per
the description in this page "usernames equals passwords" is given.
In this login page (if this is the correct page), When i give my Id and
password and click on LOGIN button, i get an exception. I am attaching the
exception trace also(exception-on-click-of-login).
In all, i am adding 4 attachments.Sorry for bothering so much.
Please let me know where i am going wrong.
Thanks
Adrien Futschik < [EMAIL PROTECTED]> wrote: On Wednesday 20 June 2007
08:18:26 sriram purushothaman wrote:
> Scott,
>
> I am attaching my WEB.XML available under tomcat-5.5.16/cas/WEB-INF folder.
> I have given entries only loginURL, validateURL and ServerName. I have not
> given an entry for ServiceURL. Is that required?
>
> Please check my web.xml and tell me which URL should I use in my IE?
> I tried using http://localhost:8080/cas/login . I got CAS login page. But
> after giving my credentials i got an exception. My LDAP auth did not happen
>
> Thanks
>
> Scott Battaglia < [EMAIL PROTECTED]> wrote: This might help you:
> http://www.ja-sig.org/wiki/display/CASUM/LDAP
>
> (note that the first step about the dependency relates to CAS 3.1 and not
> CAS 3.0.x but the rest of the information should be okay).
>
> -Scott
>
> On 6/19/07, sriram purushothaman <[EMAIL PROTECTED]> wrote: Please check
> this bean entry in deployer..xml <bean id="contextSource"
> class="org.jasig.cas.adaptors.ldap.util.AuthenticatedLdapContextSource">
> <property name="authenticatedReadOnly" value="false" /> <property
> name="userName" value="" />
> <property name="password" value="" />
> <property name="urls">
> <list>
> <value>ldap://XX.XXX.X.XXX:389/</value>
> </list>
> </property>
>
> <property name="baseEnvironmentProperties">
> <map>
> <entry>
>
> <key><value>java.naming.security.authentication</value></key>
> <value>simple</value>
> </entry>
> </map>
> </property>
> </bean>
>
> What should i give for UserName and Password?
> Should i give the Distinguished Name and password that i normally use in
> httpd.conf(Apache web-server + weblogic) and what should i give for URLs
> list
>
> Please let me know
>
> Thanks
>
> Scott Battaglia <[EMAIL PROTECTED] > wrote: If you're using a
> non-Sun JVM, then you need to set the "responseControlFactory" property on
> the ContextSource. The default is an internal Sun implementation.
>
> -Scott
>
> On 6/19/07, sriram purushothaman <[EMAIL PROTECTED] > wrote: Hi
>
> I have done LDAP authentication using Apache Webserver 2.0.59 and Weblogic
> 8.1 and I am successful with it. Now i want to do it with CAS.
>
> I am new to CAS and i am trying out few stuff. I am using Tomcat 5.5.16,
> JDK 1.42
>
> 1. I have download cas-server-3.0.7 and cas-client-java-2.1.1
> 2. I have downloaded cas-server-ldap-3.0.7 JAR , spring-ldap1.1.2 JAR,
> ldapbp1.0 JAR and put these 3 JARs in localplugins/lib folder. 3. Did ant
> jar and ant war. Got the localplugins.jar and the WAR file 4. I changed my
> deployerConfigContext.xml. I have attached the same here.Please check and
> tell me whether it is correct. 5. Copied the WAR into my tomcat/webapps
> 6. When i start my tomcat, i am getting the attached error.
>
> I have downloaded this folder structure com.sun.jndi.ldap.<>, but not sure
> what to do with it.
>
> Regards,
> Sriram
>
>
> ---------------------------------
> Don't pick lemons.
> See all the new 2007 cars at Yahoo! Autos.
>
>
> 2007-06-19 14:55:45,250 ERROR
> [org.springframework.web.context.ContextLoader ] - <Context initialization
> failed> org.springframework.beans.factory.BeanCreationException: Error
> creating bean with name 'centralAuthenticationService' defined in
> ServletContext resource [/WEB-INF/applicationContext.xml]: Cannot resolve
> reference to bean 'authenticationManager' while setting bean property
> 'authenticationManager'; nested exception is
> org.springframework.beans.factory.BeanCreationException : Error creating
> bean with name 'authenticationManager' defined in ServletContext resource
> [/WEB-INF/deployerConfigContext.xml]: Cannot create inner bean '
> org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler#b2e752 ' of type
> [org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler] while setting
> bean property 'authenticationHandlers' with key [1]; nested exception is
> org.springframework.beans.factory.BeanCreationException: Error creating
> bean with name
> 'org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler#b2e752' defined
> in ServletContext resource [/WEB-INF/deployerConfigContext.xml]: Cannot
> resolv!
> e reference to bean 'contextSource' while setting bean property
> 'contextSource'; nested exception is
> org.springframework.beans.factory.BeanCreationException : Error creating
> bean with name 'contextSource' defined in ServletContext resource
> [/WEB-INF/deployerConfigContext.xml]: Instantiation of bean failed; nested
> exception is java.lang.NoClassDefFoundError :
> com.sun.jndi.ldap.ctl.ResponseControlFactory Caused by:
> org.springframework.beans.factory.BeanCreationException: Error creating
> bean with name 'authenticationManager' defined in ServletContext resource
> [/WEB-INF/deployerConfigContext.xml]: Cannot create inner bean '
> org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler#b2e752' of type
> [org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler ] while setting
> bean property 'authenticationHandlers' with key [1]; nested exception is
> org.springframework.beans.factory.BeanCreationException : Error creating
> bean with name
> 'org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler#b2e752' defined
> in ServletContext resource [/WEB-INF/deployerConfigContext.xml]: Cannot
> resolve reference to bean 'contextSource' while setting bean property
> 'contextSource'; nested exception is
> org.springframework.beans.factory.BeanCreationException : Error creating
> bean with name 'contextSource' defined in ServletContext resource
> [/WEB-INF/deployerConfigContext.xml]: Instantiation of bean failed; nested
> exce!
> ption is java.lang.NoClassDefFoundError:
> com.sun.jndi.ldap.ctl.ResponseControlFactory Caused by:
> org.springframework.beans.factory.BeanCreationException: Error creating
> bean with name
> 'org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler#b2e752 '
> defined in ServletContext resource [/WEB-INF/deployerConfigContext.xml]:
> Cannot resolve reference to bean 'contextSource' while setting bean
> property 'contextSource'; nested exception is
> org.springframework.beans.factory.BeanCreationException : Error creating
> bean with name 'contextSource' defined in ServletContext resource
> [/WEB-INF/deployerConfigContext.xml]: Instantiation of bean failed; nested
> exception is java.lang.NoClassDefFoundError:
> com.sun.jndi.ldap.ctl.ResponseControlFactory Caused by:
> org.springframework.beans.factory.BeanCreationException: Error creating
> bean with name 'contextSource' defined in ServletContext resource
> [/WEB-INF/deployerConfigContext.xml]: Instantiation of bean failed; nested
> exception is java.lang.NoClassDefFoundError:
> com.sun.jndi.ldap.ctl.ResponseControlFactory Caused by:
> java.lang.NoClassDefFoundError:
> com.sun.jndi.ldap.ctl.ResponseControlFactory at
> org.springframework.ldap.support.LdapContextSource.class$
> (LdapContextSource.java :42) at
> org.springframework.ldap.support.LdapContextSource.<clinit>(LdapContextSour
>ce.java:42) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native
> Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance
> (NativeConstructorAccessorImpl.java:39) at
> sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstru
> ctorAccessorImpl.java:27) at
> java.lang.reflect.Constructor.newInstance(Constructor.java :274) at
> org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:84) at
> org.springframework.beans.BeanUtils.instantiateClass (BeanUtils.java:60) at
> org.springframework.beans.factory.support.SimpleInstantiationStrategy.insta
>ntiate (SimpleInstantiationStrategy.java:45) at
> org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactor
>y.instantiateBean (AbstractAutowireCapableBeanFactory.java:739) at
> org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactor
>y.createBeanInstance (AbstractAutowireCapableBeanFactory.java :727) at
> org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactor
>y.createBean (AbstractAutowireCapableBeanFactory.java:390) at
> org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject
> (AbstractBeanFactory.java:254) at
> org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getS
>ingleton (DefaultSingletonBeanRegistry.java:144) at
> org.springframework.beans.factory.support.AbstractBeanFactory.getBean
> (AbstractBeanFactory.java:251) at
> org.springframework.beans.factory.support.AbstractBeanFactory.getBean
> (AbstractBeanFactory.java:163) at
> org.springframework.beans.factory.support.BeanDefinitionValueResolver.resol
>veReference(BeanDefinitionValueResolver.java :271) at
> org.springframework.beans.factory.support.BeanDefinitionValueResolver.resol
>veValueIfNecessary (BeanDefinitionValueResolver.java:128) at
> org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactor
>y.applyPropertyValues (AbstractAutowireCapableBeanFactory.java :1047) at
> org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactor
>y.populateBean (AbstractAutowireCapableBeanFactory.java :843) at
> org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactor
>y.createBean (AbstractAutowireCapableBeanFactory.java:427) at
> org.springframework.beans.factory.support.BeanDefinitionValueResolver.resol
>veInnerBean (BeanDefinitionValueResolver.java:221) at
> org.springframework.beans.factory.support.BeanDefinitionValueResolver.resol
>veValueIfNecessary (BeanDefinitionValueResolver.java :111) at
> org.springframework.beans.factory.support.BeanDefinitionValueResolver.resol
>veManagedList (BeanDefinitionValueResolver.java:291) at
> org.springframework.beans.factory.support.BeanDefinitionValueResolver.resol
>veValueIfNecessary (BeanDefinitionValueResolver.java:132) at
> org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactor
>y.applyPropertyValues (AbstractAutowireCapableBeanFactory.java:1047) at
> org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactor
>y.populateBean (AbstractAutowireCapableBeanFactory.java :843) at
> org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactor
>y.createBean (AbstractAutowireCapableBeanFactory.java:427) at
> org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject
> (AbstractBeanFactory.java:254) at
> org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getS
>ingleton (DefaultSingletonBeanRegistry.java:144) at
> org.springframework.beans.factory.support.AbstractBeanFactory.getBean
> (AbstractBeanFactory.java:251) at
> org.springframework.beans.factory.support.AbstractBeanFactory.getBean
> ( AbstractBeanFactory.java:163)
> _______________________________________________
> Yale CAS mailing list
> [email protected]
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
>
>
>
>
> --
> -Scott Battaglia
>
>
> LinkedIn: http://www.linkedin.com/in/scottbattaglia
> _______________________________________________ Yale CAS mailing list
> [email protected]
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
>
> ---------------------------------
> We won't tell. Get more on shows you hate to love
> (and love to hate): Yahoo! TV's Guilty Pleasures list.
>
> _______________________________________________
> Yale CAS mailing list
> [email protected]
> http://tp.its.yale.edu/mailman/listinfo/cas
you mixed up a few things. The cas-filter is to be used with your client
application not with cas. This means that your web.xml for cas is wrong.
It should look like this ....
<?xml version="1.0" encoding="ISO-8859-1"?>
<web-app xmlns=" http://java.sun.com/xml/ns/j2ee"
xmlns:xsi=" http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation=" http://java.sun.com/xml/ns/j2ee
http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd"
version="2.4">
<display-name>Central Authentication System (CAS) 3.0</display-name>
<context-param>
<param-name>contextConfigLocation</param-name>
<param-value>
/WEB-INF/applicationContext.xml,
/WEB-INF/deployerConfigContext.xml
</param-value>
</context-param>
<!-- DEBUT Ajout pour OPIAM -->
<filter>
<filter-name>additional cookie</filter-name>
<filter-class>com.atosorigin.opiam.auth.cas.CreateAdditionalCookie</filter-class>
</filter>
<filter-mapping>
<filter-name>additional cookie</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- FIN Ajout pour OPIAM -->
<!--
place this into the contextConfigLocation to enable
service restrictions.
/WEB-INF/approvedServices.xml, .....
In fact I didn't not even change anything in-there.
The first thing you have to do is try out https connection to CAS. For me it
was :
https://localhost:8443/cas/login but by default the port is 8444, so it would
be
https://localhost:8444/cas/login
Then if you've made the changes you need to in deployerConfigContext.xml,
you should be able to authenticate with a valid user&password.
See my configuration attached.
Hope it helps
--
Futschik Adrien
Atos Origin
Tour "Les Miroirs"
18, avenue d'Alsace
92296 Paris La Défense Cedex
FRANCE
Phone: +33 (0) 1 55 91 24 82
[EMAIL PROTECTED]
www.si.fr.atosorigin.com
class=" org.jasig.cas.authentication.AuthenticationManagerImpl">
class="org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver"
/>
class="org.jasig.cas.authentication.principal.HttpBasedServiceCredentialsToPrincipalResolver
" />
class="org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler"
>
class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler" >
ldap://localhost:4800/
java.naming.security.authentication
simple
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
---------------------------------
You snooze, you lose. Get messages ASAP with AutoCheck
in the all-new Yahoo! Mail Beta.
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
--
-Scott Battaglia
LinkedIn: http://www.linkedin.com/in/scottbattaglia
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
---------------------------------
Be a better Globetrotter. Get better travel answers from someone who knows.
Yahoo! Answers - Check it out.
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
--
-Scott Battaglia
LinkedIn: http://www.linkedin.com/in/scottbattaglia
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
---------------------------------
Looking for a deal? Find great prices on flights and hotels with Yahoo!
FareChase._______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas