I'd recommend either using CAS' LDAP support and doing an LDAP Bind against AD, or using CAS' JAASAuthenticationHandler and a JAAS config for Kerberos similar to the one in the IBM article you referenced. Check out the CAS wiki for more info on both of these.
HTH, -Matt On Mon, 2007-12-03 at 09:46 -0600, Jonathan Hayward http://JonathansCorner.com wrote: > I want to get CAS to authenticate against Active Directory > username/password pairs. > > I was looking at Build and Implement a single sign-on solution at > http://www.ibm.com/developerworks/web/library/wa-singlesign/ ; it > seems to describe what I want, but it is from 2003 and I want to work > with current software versions. The author provides a ZIP at > http://download.boulder.ibm.com/ibmdl/pub/software/dw/library/wa-singlesign/KerberosAuthSrc.zip > , and KerberosAuthHandler.java didn't compile. (It implements interface > PasswordHandler, possibly from package edu.yale.its.tp.cas.auth , and I have > been having trouble finding the interface.) > > How should I be going about this? Should I be taking another approach, > or can some details be changed while I use the basic approach at > http://www.ibm.com/developerworks/web/library/wa-singlesign/ ? > > RTFM links would be appreciated; I've been having trouble finding > them. > > -- > ++ Jonathan Hayward, [EMAIL PROTECTED] > ** To see an award-winning website with stories, essays, artwork, > ** games, and a four-dimensional maze, why not visit my home page? > ** All of this is waiting for you at http://JonathansCorner.com > _______________________________________________ > Yale CAS mailing list > [email protected] > http://tp.its.yale.edu/mailman/listinfo/cas -- Matt Smith [EMAIL PROTECTED] University Information Technology Services (UITS) University of Connecticut PGP Key ID: 0xE9C5244E
signature.asc
Description: This is a digitally signed message part
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
