Logging on problem
Michael Ströder
michael at stroeder.com
Mon Jul 14 05:30:02 EDT 2008
Bellamine, Khalil wrote:
>
> I'm trying to use CAS with OpenLDAP but I'm having troubles logging on
> the CAS server.
> [..]
> rootdn "cn=Manager,dc=my-domain,dc=com"
> rootpw secret
> <bean
> class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler">
> <property name="filter"
> value="cn=%u" />
> <property
> name="searchBase" value="dc=my-domain,dc=com" />
> <property
> name="contextSource" ref="contextSource" />
> <property
> name="ignorePartialResultException" value="yes" /> <!-- fix because of
> how AD returns results -->
> [..]
> I don't see where the problem when I try to connect with user=Manager
> and password=secret it does not work !!
The rootdn in OpenLDAP's slapd.conf specifies a special user which does
not have an accompanying searchable directory entry and hence CAS cannot
find it with filter (cn=Manager).
Add a normal user entry and test with that.
You probably also don't want to use attribute 'cn' for searching since
it most times contains person names. Assign unique user-IDs for your
users, store the in attribute 'uid' of the user's entry and use filter
(uid=%u).
Ciao, Michael.
More information about the cas
mailing list