CAS apache directory service (ADS) intergration

Tue, 21 Oct 2008 20:52:14 -0700 

Hi all,
I,m new in CAS, LDAP.
I want to intergrate Liferay with CAS, LDAP. I have done following step:
1- Setup ApacheDS and config liferay portal. Liferay can import from and
export uer to LDAP.
2- I download cas server 3.2.1 <http://www.ja-sig.org/products/cas/> rename
to cas-web and install it (based on the instruction of ja-sig cas). And the
cas service work well. Liferay can use this service.

2.1 generate key

-  keytool -genkey -alias tomcat -keypass changeit -keyalg RSA
 Enter keystore password:  changeit
 What is your first and last name?
 [Unknown]:  localhost
 What is the name of your organizational unit?
 [Unknown]:
 What is the name of your organization?
 [Unknown]:
 What is the name of your City or Locality?
 [Unknown]:
 What is the name of your State or Province?
 [Unknown]:
 What is the two-letter country code for this unit?
 [Unknown]:
 Is CN=localhost, OU=Unknown, O=Unknown, L=Unknown, ST=Unknown,
C=Unknown correct?
 [no]: yes

keytool -export -alias tomcat -keypass changeit -file %FILE_NAME%
keytool -import -alias tomcat -file %FILE_NAME% -keypass changeit -keystore
%JAVA_HOME%/jre/lib/security/cacerts
2.2 Changing ssl configuration in the server.xml file of tomcat:

    <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
        maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
        enableLookups="false" disableUploadTimeout="true"
        acceptCount="100" scheme="https" secure="true"
        clientAuth="false" sslProtocol="TLS"
      *  keystoreFile="c:/Documents and Settings/Administrator/.keystore"
        keystorePass="changeit"
        truststoreFile="C:/Program
Files/Java/jdk1.6.0_04/jre/lib/security/cacerts"*
   />
3. Config cas to use LDAP user.
I config cas-web following the instruction in
http://www.ja-sig.org/wiki/display/CASUM/CAS+Quickly+%28LDAP%2C+Windows%2C+Apache+Directory+Server%29.
But CAS service can't get LDAP user.
The message in screen is: The credentials you provided cannot be determined
to be authentic.
and the message in tomcat is
*[org.jasig.cas.authentication.AuthenticationManager
Impl] - <AuthenticationHandler:
org.jasig.cas.authentication.handler.support.Sim
pleTestUsernamePasswordAuthenticationHandler failed to authenticate the user
whi
ch provided the following credentials: dhdieu>
*I'm ussing jdk 1.6, tomcat 6.0, apacheds-1.0.2
Thanks.
Dang.

_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas

Reply via email to