Re: [cas-user] CAS5 LDAP

2018-05-12 Thread David Curry
Glad you figured it out. David A. Curry, CISSP Director of Information Security The New School - Information Technology 71 Fifth Ave., 9th Fl. ~ New York, NY 10003 +1 212 229-5300 x4728 ~ david.cu...@newschool.edu Sent from my phone; please excuse typos and inane auto-corrections. On Sat, May

Re: [cas-user] CAS5 LDAP

2018-05-12 Thread Lionel Samuel
Thanks David! Your guidance helped tremendously --- I had inadvertently commented out the ' cas.authn.ldap[0].type' line. have a great weekend. On Saturday, May 12, 2018 at 5:03:25 PM UTC-7, David Curry wrote: > > Since you have bind credentials specified, I'm thinking maybe you want >

Re: [cas-user] CAS5 LDAP

2018-05-12 Thread David Curry
Since you have bind credentials specified, I'm thinking maybe you want AUTHENTICATED rather than DIRECT. That's just a guess, though. You might want to check the definitions of the types here: https://apereo.github.io/cas/5.2.x/installation/Configuration-Properties.html#ldap-authentication-1

Re: [cas-user] CAS5 LDAP

2018-05-12 Thread Lionel Samuel
I am testing on my localhost and don't have SSL --- could this be it? If this is it, is there a way to disable SSL requirement for testing? On Saturday, May 12, 2018 at 4:51:11 PM UTC-7, Lionel Samuel wrote: > > Yes --- here is my 'cas.properties' configuration. > > The ldap connection URL and

Re: [cas-user] CAS5 LDAP

2018-05-12 Thread Lionel Samuel
Yes --- here is my 'cas.properties' configuration. The ldap connection URL and DNs are correct (validated via ldapsearch from command line). Do you notice anything else missing? cas.properties: cas.server.name: http://localhost:8080/ cas.server.prefix: http://localhost:8080/edu-cas

Re: [cas-user] CAS5 LDAP

2018-05-12 Thread David Curry
Assuming you added all the LDAP properties Did you disable the use of the built-in credentials (casuser/Mellon)? cas.authn.accept.users: It should be set to an empty value, as shown above. David A. Curry, CISSP Director of Information Security The New School - Information Technology 71

Re: [cas-user] Cas5 Ldap Authentication

2018-04-12 Thread yashwanth chowdary
Hi Manfredo Hopp, How to send authorities to an application On Thursday, March 8, 2018 at 11:09:54 AM UTC-6, Manfredo Hopp wrote: > > see > > > https://apereo.github.io/cas/development/installation/Configuring-Custom-Authentication.html > > 2018-03-08 11:32 GMT-03:00 yashwanth chowdary

Re: [cas-user] Cas5 Ldap Authentication

2018-03-21 Thread Ben Howell-Thomas
Did you work it out? But the documentation suggests it'll just pick it up and run it (which means I'm doing wrong by overriding LdapAuthenticationConfiguration, creating much more work for myself on

Re: [cas-user] Cas5 Ldap Authentication

2018-03-08 Thread Alberto Cabello Sánchez
On Thu, 8 Mar 2018 06:32:52 -0800 (PST) yashwanth chowdary wrote: > I have written my .own classes handler,configuration(please refer to > the attached files).What i observe is My handler is getting registered > properly but when i give the credentials the

Re: [cas-user] Cas5 Ldap Authentication

2018-03-08 Thread yashwanth chowdary
> > Dave I have written my .own classes handler,configuration(please refer to > the attached files).What i observe is My handler is getting registered > properly but when i give the credentials the method " > authenticateUsernamePasswordInternal" is not getting called. properties > are same as

Re: [cas-user] Cas5 Ldap Authentication

2018-03-08 Thread yashwanth chowdary
Dave can you give a ref for writing our own customization handlers and configuration classes for Ldap On Thursday, March 8, 2018 at 6:42:04 PM UTC+5:30, David Curry wrote: > > It looks right, but I have never used that particular property, so I'm > just guessing. > > In our environment we have

Re: [cas-user] Cas5 Ldap Authentication

2018-03-08 Thread David Curry
It looks right, but I have never used that particular property, so I'm just guessing. In our environment we have to merge attributes from two different directories, so I have the authentication and attribute resolution configured separately and list the attributes out individually. Someone else

Re: [cas-user] Cas5 Ldap Authentication

2018-03-08 Thread yashwanth chowdary
Hi David , Is this the correct way to initialize my principalAttributeList? By the way , I am using 5.3.0RC2 version On Wednesday, March 7, 2018 at 6:23:27 PM UTC+5:30, David Curry wrote: > > You don't say what version you're using, but the userFilter property was > renamed to searchFilter

Re: [cas-user] Cas5 Ldap Authentication

2018-03-07 Thread David Curry
You don't say what version you're using, but the userFilter property was renamed to searchFilter between 5.2 and 5.3 as part of the property documentation cleanup. (Documented here: https://apereo.github.io/2017/12/29/530rc1-release/#documentation-cleanup) --Dave -- DAVID A. CURRY, CISSP