Michael Ströder wrote: > Céline Aussourd wrote: >> My authentication using SPNEGO finally works :-) but I have now >> another problem. >> [..] >> The problem is that my sAMAccountName is transmitted to my CAS client >> whereas I would prefer my userPrincipalName... > > [..debug log snipped..] >> Well, we can see that MC\CA_AUSSO is successfully authenticated but I >> would prefer [EMAIL PROTECTED] > > What's your setting of principalWithDomainName (property of > JCIFSSpnegoAuthenticationHandler)?
Are you sure that SPNEGO was done with Kerberos? Or was it done with NTLM? Did your browser ask for username/password (not CAS' login form). What's your setting of NTLMallowed (property of JCIFSSpnegoAuthenticationHandler)? If you want to allow SPNEGO with NTLM you could try to map the principal name to userPrincipalName like described here: http://www.ja-sig.org/wiki/display/CASUM/Attributes Ciao, Michael. _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
