HELP!!! Problems with FastBindLdapAuthenticationHandler and BindLdapAuthenticationHandler in CAS 3.0.5

Scott Battaglia scott.battaglia at gmail.com
Tue Jan 9 08:20:42 EST 2007 

I did a quick Google search (I am not familiar with Active Directory) and
came up with this:

http://forum.java.sun.com/thread.jspa?messageID=4227692

Not sure if it helps.
-Scott

On 1/9/07, George, Janeve <Janeve.George at lionbridge.com> wrote:
>
>
> Hi All,
>
> I am using CAS 3.0.5 to authenticate user against an Active Directory
> (User's userPrincipalName).
>
> I am working on Windows XP with jdk1.4.2, Tomcat 5.0.28. I am not using
> Secure Ldap Socket for now.
>
> If I use the FastBindLdapAuthenticationHandler, authentication happens
> fine with the filter: CN=%u,CN=users,DC=mydomain,DC=com
>
> But here I have to provide the Common Name (CN) as username. It should be
> the userPrincipalName to be provided for authentication.
>
> The filter will then be: userPrincipalName=%u,CN=users,DC=mydomain,DC=com
> But this filter will not authenticate properly.
>
> When I configure the "deployerConfigContext.xml" to use the
> BindLdapAuthenticationHandler, CAS throws the following exception on enter
> the credentials:
>
> javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308:
> LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 525, v893
> ]
>
>         at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:2988)
>         at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2934)
>         at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2735)
>         at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2649)
>         at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:290)
>         at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(
> LdapCtxFactory.java:175)
>         at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(
> LdapCtxFactory.java:193)
>         at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(
> LdapCtxFactory.java:136)
>         at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(
> LdapCtxFactory.java:66)
>         at javax.naming.spi.NamingManager.getInitialContext(
> NamingManager.java:662)
>         at javax.naming.InitialContext.getDefaultInitCtx(
> InitialContext.java:243)
>         at javax.naming.InitialContext.init(InitialContext.java:219)
>         at javax.naming.ldap.InitialLdapContext.<init>(
> InitialLdapContext.java:133)
>         at
> net.sf.ldaptemplate.support.LdapContextSource.getDirContextInstance(
> LdapContextSource.java:45)
>         at net.sf.ldaptemplate.support.AbstractContextSource.createContext
> (AbstractContextSource.java:194)
>         at
> net.sf.ldaptemplate.support.AbstractContextSource.getReadOnlyContext(
> AbstractContextSource.java:105)
>         at net.sf.ldaptemplate.LdapTemplate.search(LdapTemplate.java:194)
>         at
> org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler.authenticateUsernamePasswordInternal
> (BindLdapAuthenticationHandler.java:71)
>
>         at
> org.jasig.cas.authentication.handler.support.AbstractUsernamePasswordAuthenticationHandler.authenticate
> (AbstractUsernamePasswordAuthenticationHandler.java:58)
>
>         at
> org.jasig.cas.authentication.AuthenticationManagerImpl.authenticate(
> AuthenticationManagerImpl.java:79)
>         at
> org.jasig.cas.CentralAuthenticationServiceImpl.createTicketGrantingTicket(
> CentralAuthenticationServiceImpl.java:282)
>
>         at org.jasig.cas.web.flow.AuthenticationViaFormAction.submit(
> AuthenticationViaFormAction.java:118)
>         at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>         at sun.reflect.NativeMethodAccessorImpl.invoke(
> NativeMethodAccessorImpl.java:39)
>         at sun.reflect.DelegatingMethodAccessorImpl.invoke(
> DelegatingMethodAccessorImpl.java:25)
>         at java.lang.reflect.Method.invoke(Method.java:324)
>         at org.springframework.webflow.util.DispatchMethodInvoker.invoke(
> DispatchMethodInvoker.java:87)
>         at org.springframework.webflow.action.MultiAction.doExecute(
> MultiAction.java:154)
>         at org.springframework.webflow.action.AbstractAction.execute(
> AbstractAction.java:217)
>         at org.springframework.webflow.AnnotatedAction.execute(
> AnnotatedAction.java:109)
>         at org.springframework.webflow.ActionExecutor.execute(
> ActionExecutor.java:54)
>         at org.springframework.webflow.ActionState.doEnter(
> ActionState.java:168)
>         at org.springframework.webflow.State.enter(State.java:192)
>         at org.springframework.webflow.Transition.execute(Transition.java
> :216)
>         at org.springframework.webflow.TransitionableState.onEvent(
> TransitionableState.java:80)
>         at org.springframework.webflow.Flow.onEvent(Flow.java:581)
>         at
> org.springframework.webflow.execution.impl.FlowExecutionControlContextImpl.signalEvent
> (FlowExecutionControlContextImpl.java:199)
>
>         at org.springframework.webflow.ActionState.doEnter(
> ActionState.java:172)
>         at org.springframework.webflow.State.enter(State.java:192)
>         at org.springframework.webflow.Transition.execute(Transition.java
> :216)
>         at org.springframework.webflow.TransitionableState.onEvent(
> TransitionableState.java:80)
>         at org.springframework.webflow.Flow.onEvent(Flow.java:581)
>         at
> org.springframework.webflow.execution.impl.FlowExecutionControlContextImpl.signalEvent
> (FlowExecutionControlContextImpl.java:199)
>
>         at
> org.springframework.webflow.execution.impl.FlowExecutionImpl.signalEvent(
> FlowExecutionImpl.java:200)
>         at
> org.springframework.webflow.executor.FlowExecutorImpl.signalEvent(
> FlowExecutorImpl.java:172)
>         at
> org.springframework.webflow.executor.support.FlowRequestHandler.handleFlowRequest
> (FlowRequestHandler.java:103)
>
>         at
> org.springframework.webflow.executor.mvc.FlowController.handleRequestInternal
> (FlowController.java:198)
>         at
> org.springframework.web.servlet.mvc.AbstractController.handleRequest(
> AbstractController.java:153)
>         at
> org.springframework.web.servlet.mvc.SimpleControllerHandlerAdapter.handle(
> SimpleControllerHandlerAdapter.java:45)
>
>         at org.springframework.web.servlet.DispatcherServlet.doDispatch(
> DispatcherServlet.java:798)
>         at org.springframework.web.servlet.DispatcherServlet.doService(
> DispatcherServlet.java:728)
>         at org.springframework.web.servlet.FrameworkServlet.processRequest
> (FrameworkServlet.java:396)
>         at org.springframework.web.servlet.FrameworkServlet.doPost(
> FrameworkServlet.java:360)
>         at javax.servlet.http.HttpServlet.service(HttpServlet.java:709)
>         at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
>         at org.jasig.cas.web.init.SafeDispatcherServlet.service(
> SafeDispatcherServlet.java:115)
>         at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(
> ApplicationFilterChain.java:237)
>         at org.apache.catalina.core.ApplicationFilterChain.doFilter(
> ApplicationFilterChain.java:157)
>         at org.apache.catalina.core.StandardWrapperValve.invoke(
> StandardWrapperValve.java:214)
>         at org.apache.catalina.core.StandardValveContext.invokeNext(
> StandardValveContext.java:104)
>         at org.apache.catalina.core.StandardPipeline.invoke(
> StandardPipeline.java:520)
>         at org.apache.catalina.core.StandardContextValve.invokeInternal(
> StandardContextValve.java:198)
>         at org.apache.catalina.core.StandardContextValve.invoke(
> StandardContextValve.java:152)
>         at org.apache.catalina.core.StandardValveContext.invokeNext(
> StandardValveContext.java:104)
>         at org.apache.catalina.core.StandardPipeline.invoke(
> StandardPipeline.java:520)
>         at org.apache.catalina.core.StandardHostValve.invoke(
> StandardHostValve.java:137)
>         at org.apache.catalina.core.StandardValveContext.invokeNext(
> StandardValveContext.java:104)
>         at org.apache.catalina.valves.ErrorReportValve.invoke(
> ErrorReportValve.java:118)
>         at org.apache.catalina.core.StandardValveContext.invokeNext(
> StandardValveContext.java:102)
>         at org.apache.catalina.core.StandardPipeline.invoke(
> StandardPipeline.java:520)
>         at org.apache.catalina.core.StandardEngineValve.invoke(
> StandardEngineValve.java:109)
>         at org.apache.catalina.core.StandardValveContext.invokeNext(
> StandardValveContext.java:104)
>         at org.apache.catalina.core.StandardPipeline.invoke(
> StandardPipeline.java:520)
>         at org.apache.catalina.core.ContainerBase.invoke(
> ContainerBase.java:929)
>         at org.apache.coyote.tomcat5.CoyoteAdapter.service(
> CoyoteAdapter.java:160)
>         at org.apache.coyote.http11.Http11Processor.process(
> Http11Processor.java:799)
>         at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection
> (Http11Protocol.java:705)
>         at org.apache.tomcat.util.net.TcpWorkerThread.runIt(
> PoolTcpEndpoint.java:577)
>         at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(
> ThreadPool.java:683)
>         at java.lang.Thread.run(Thread.java:534)
>
> Can I resolve the same by upgrading to CAS 3.0.6?
>
> Any help in resolving these issues will be greatly appreciated.
>
> Thanks and Regards,
> *Janeve George*
>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20070109/4fcd7ee5/attachment.html

More information about the cas mailing list