LDAP authentication with CAS 3.1.1

Scott Battaglia scott.battaglia at gmail.com
Wed Dec 12 14:15:23 EST 2007 

Simon,

The following INFO message is fine:
2007-12-12 16:41:48,624 INFO
[org.jasig.cas.web.flow.AuthenticationViaFormAction]
- <FormObjectClass not set.  Using default class of
org.jasig.cas.authentication.principal.UsernamePasswordCredentials with
formObjectName credentials and validator
org.jasig.cas.validation.UsernamePasswordCredentialsValidator.>

What it means is that you're using the defaults for Credentials (the
UsernamePasswordCredentials).

-Scott


On Dec 12, 2007 11:14 AM, Simon Vallet <svallet at genoscope.cns.fr> wrote:

> Hi,
>
> I'm currently trying to setup a CAS 3.1.1 server using LDAP
> authentication -- here is the relevant portion of the
> deployerConfigContext.xml :
>
> <bean id="contextSource" class="
> org.jasig.cas.adaptors.ldap.util.AuthenticatedLdapContextSource">
> <property name="anonymousReadOnly" value="true" />
> <property name="pooled" value="true"/>
> <property name="urls">
>    <list>
>        <value>ldap://ldap1.genoscope.cns.fr/</value>
>        <value>ldap://ldap2.genoscope.cns.fr/</value>
>    </list>
> </property>
> <!-- <property name="userName" value="{bind_username_goes_here}"/> -->
> <!-- <property name="password" value="{bind_user_password_goes_here}"/>
> -->
> <property name="baseEnvironmentProperties">
>    <map>
>        <entry>
>        <key>
>                <value>java.naming.security.authentication</value>
>        </key>
>        <value>simple</value>
>        </entry>
>    </map>
> </property>
> </bean>
>
> and, in the authenticationHandler property :
>
> <bean class="org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler
> ">
>    <property name="filter"
> value="uid=%u,ou=users,o=genoscope,dc=cns,dc=fr" />
>    <property name="contextSource" ref="contextSource" />
> </bean>
>
> This is what I get in the logs:
>
> 2007-12-12 16:41:47,463 WARN [
> org.springframework.ldap.support.LdapContextSource] - <Property 'userName'
> not set - anonymous context will be used for read-write operations>
>
> I'm a bit surprised about this one, since I explicitely configured an
> anoymous context (or so I thought).
>
> And further down :
> 2007-12-12 16:41:48,624 INFO [
> org.jasig.cas.web.flow.AuthenticationViaFormAction] - <FormObjectClass not
> set.  Using default class of
> org.jasig.cas.authentication.principal.UsernamePasswordCredentials with
> formObjectName credentials and validator
> org.jasig.cas.validation.UsernamePasswordCredentialsValidator.>
>
> I don't get this one : why doesn't CAS use the configured
> FastBindLdapAuthenticationHandler ?
>
> Any hint ?
>
> Simon
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>



-- 
-Scott Battaglia

LinkedIn: http://www.linkedin.com/in/scottbattaglia
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20071212/c4e2a778/attachment.html

More information about the cas mailing list