[cas-user] Another CAS 5 LDAP issue

Mon, 10 Apr 2017 14:01:26 -0700 

I'm new to CAS and I have been trying to figure out how to get it to 
authenticate against LDAP. I'm on RHEL 7 with Tomcat 7 and CAS 5.0,4. I 
used the Maven overlay. My pom.xml has:

            <groupId>org.apereo.cas</groupId>
            <artifactId>cas-server-support-ldap</artifactId>
            <version>5.0.4</version>
        </dependency>
        <dependency>
            <groupId>org.apereo.cas</groupId>
            <artifactId>cas-server-support-ldap-core</artifactId>
            <version>5.0.4</version>
        </dependency>

No errors building. I didn't have the second one initially. I added it 
later and it made no difference


Here is my ldap section from cas.properties:



#LDAP connection info
cas.authn.accept.users=
cas.authn.ldap[0].type=AUTHENTICATED
cas.authn.ldap[0].ldapUrl=ldaps://ldap.my.org:636
cas.authn.ldap[0].useSsl=true
cas.authn.ldap[0].useStartTls=false
cas.authn.ldap[0].connectTimeout=5000
cas.authn.ldap[0].baseDn=ou=cp,o=org
cas.authn.ldap[0].principalAttributeId=uid
cas.authn.ldap[0].userFilter=cn=uid
cas.authn.ldap[0].subtreeSearch=true
cas.authn.ldap[0].usePasswordPolicy=true
cas.authn.ldap[0].bindDn=cn=cn=Directory Manager,o=org

I just keep getting the same errors:

WARN [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - 
<Authentication has failed. Credentials may be incorrect or CAS cannot find 
authentication handler that supports [testusername] of type 
[UsernamePasswordCredential], which suggests a configuration problem.>

ERROR [org.apereo.cas.web.flow.AuthenticationExceptionHandler] - <Unable to 
translate handler errors of the authentication exception 
org.apereo.cas.authentication.AuthenticationException: 0 errors, 0 
successes. Returning UNKNOWN by default...>

Nothing I have found has helped. I tried changing the type to DIRECT. We 
don't use AD so I didn't try that. Not sure if it will help. Any ideas? I'm 
stumped.

-- 
- CAS gitter chatroom: https://gitter.im/apereo/cas
- CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html
- CAS documentation website: https://apereo.github.io/cas
- CAS project website: https://github.com/apereo/cas
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/bcdf6bd8-ba0e-4587-bdd7-1b56d2bf49af%40apereo.org.

Reply via email to