Hi all, After some hours, I must really miss something trying to make 5.2.x work as 4.2 (and as 3.x did before)
using DIRECT bind (no administrative binddn/pass), I can log in but no
way to get any attributes from LDAP.
I can search (and find) required data with user credentials on
command-line ldapsearch…
Here is the error (ldaptive debug) attached…
I hope someone can show me my error… or ?
relevant cas.properties lines (with some tests commented):
cas.authn.ldap[0].type=DIRECT
cas.authn.ldap[0].poolPassivator=CLOSE
#cas.authn.ldap[0].poolPassivator=NONE
cas.authn.ldap[0].userFilter=uid={user}
cas.authn.ldap[0].ldapUrl=ldaps://ldapr
cas.authn.ldap[0].baseDn=ou=People,dc=nettest,dc=egim
cas.authn.ldap[0].dnFormat=uid=%s,ou=People,dc=nettest,dc=egim
cas.authn.ldap[0].principalAttributeList=sn,givenName,mailLocalAddress:mail,supannAffectation,eduPersonAffiliation,supannEtuId,supannEmpId,displayName,eduPersonPrincipalName,eduPersonPrimaryAffiliation,postalAddress,telephoneNumber,supannCivilite
cas.authn.ldap[0].principalAttributeId=uid
cas.authn.ldap[0].trustCertificates=file:/etc/ssl/caecm.crt
#cas.authn.ldap[0].enhanceWithEntryResolver=true
#cas.authn.ldap[0].allowMissingPrincipalAttributeValue=true
#cas.authn.attributeRepository.merger=MERGE
cas.authn.ldap[0].passwordPolicy.enabled=false
… And thank you for this great piece of software we are using for more
than 15 years !!!
--
geoffroy desvernay
C.R.I - Administration systèmes et réseaux
Ecole Centrale de Marseille
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/6224d730-1f1f-47d4-00c0-70a907254e49%40centrale-marseille.fr.
2018-03-28 04:23:58,257 DEBUG [org.ldaptive.SearchOperation] - <execute request=[org.ldaptive.SearchRequest@2019877151::baseDn=, searchFilter=[org.ldaptive.SearchFilter@1642584434::filter=(objectClass=*), parameters={}], returnAttributes=[1.1], searchScope=OBJECT, timeLimit=PT0S, sizeLimit=1, derefAliases=null, typesOnly=false, binaryAttributes=null, sortBehavior=UNORDERED, searchEntryHandlers=null, searchReferenceHandlers=[org.ldaptive.referral.SearchReferralHandler$SearchReferenceHandler@7a9411e7], controls=null, referralHandler=org.ldaptive.referral.SearchReferralHandler@1854e36a, intermediateResponseHandlers=null] with connection=[org.ldaptive.DefaultConnectionFactory$DefaultConnection@299537016::config=[org.ldaptive.ConnectionConfig@1580413620::ldapUrl=ldaps://ldapr, connectTimeout=PT5S, responseTimeout=PT5S, sslConfig=[org.ldaptive.ssl.SslConfig@845122414::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@863417338::trustCertificates=file:/etc/ssl/caecm.crt, authenticationCertificate=null, authenticationKey=null], trustManagers=null, hostnameVerifier=null, hostnameVerifierConfig=null, enabledCipherSuites=null, enabledProtocols=null, handshakeCompletedListeners=null], useSSL=true, useStartTLS=false, connectionInitializer=null, connectionStrategy=org.ldaptive.DefaultConnectionStrategy@268438ba], providerConnectionFactory=[org.ldaptive.provider.jndi.JndiConnectionFactory@627199471::metadata=[ldapUrl=ldaps://ldapr, count=1], environment={java.naming.ldap.factory.socket=org.ldaptive.ssl.ThreadLocalTLSSocketFactory, com.sun.jndi.ldap.connect.timeout=5000, java.naming.ldap.version=3, java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.protocol=ssl, com.sun.jndi.ldap.read.timeout=5000}, classLoader=null, providerConfig=[org.ldaptive.provider.jndi.JndiProviderConfig@1832314::operationExceptionResultCodes=[PROTOCOL_ERROR, SERVER_DOWN], properties={}, controlProcessor=org.ldaptive.provider.ControlProcessor@1cc879bb, environment=null, tracePackets=null, removeDnUrls=true, searchIgnoreResultCodes=[TIME_LIMIT_EXCEEDED, SIZE_LIMIT_EXCEEDED, PARTIAL_RESULTS], classLoader=null, sslSocketFactory=null, hostnameVerifier=null]], providerConnection=org.ldaptive.provider.jndi.JndiConnection@3b71ce7f]>
2018-03-28 04:23:58,275 DEBUG [org.ldaptive.SearchOperation] - <execute response=[org.ldaptive.Response@909059609::result=[org.ldaptive.SearchResult@-1951941189::entries=[[dn=[], responseControls=null, messageId=-1]], references=[]], resultCode=SUCCESS, message=null, matchedDn=null, responseControls=null, referralURLs=null, messageId=-1] for request=[org.ldaptive.SearchRequest@2019877151::baseDn=, searchFilter=[org.ldaptive.SearchFilter@1642584434::filter=(objectClass=*), parameters={}], returnAttributes=[1.1], searchScope=OBJECT, timeLimit=PT0S, sizeLimit=1, derefAliases=null, typesOnly=false, binaryAttributes=null, sortBehavior=UNORDERED, searchEntryHandlers=null, searchReferenceHandlers=[org.ldaptive.referral.SearchReferralHandler$SearchReferenceHandler@7a9411e7], controls=null, referralHandler=org.ldaptive.referral.SearchReferralHandler@1854e36a, intermediateResponseHandlers=null] with connection=[org.ldaptive.DefaultConnectionFactory$DefaultConnection@299537016::config=[org.ldaptive.ConnectionConfig@1580413620::ldapUrl=ldaps://ldapr, connectTimeout=PT5S, responseTimeout=PT5S, sslConfig=[org.ldaptive.ssl.SslConfig@845122414::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@863417338::trustCertificates=file:/etc/ssl/caecm.crt, authenticationCertificate=null, authenticationKey=null], trustManagers=null, hostnameVerifier=null, hostnameVerifierConfig=null, enabledCipherSuites=null, enabledProtocols=null, handshakeCompletedListeners=null], useSSL=true, useStartTLS=false, connectionInitializer=null, connectionStrategy=org.ldaptive.DefaultConnectionStrategy@268438ba], providerConnectionFactory=[org.ldaptive.provider.jndi.JndiConnectionFactory@627199471::metadata=[ldapUrl=ldaps://ldapr, count=1], environment={java.naming.ldap.factory.socket=org.ldaptive.ssl.ThreadLocalTLSSocketFactory, com.sun.jndi.ldap.connect.timeout=5000, java.naming.ldap.version=3, java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.protocol=ssl, com.sun.jndi.ldap.read.timeout=5000}, classLoader=null, providerConfig=[org.ldaptive.provider.jndi.JndiProviderConfig@1832314::operationExceptionResultCodes=[PROTOCOL_ERROR, SERVER_DOWN], properties={}, controlProcessor=org.ldaptive.provider.ControlProcessor@1cc879bb, environment=null, tracePackets=null, removeDnUrls=true, searchIgnoreResultCodes=[TIME_LIMIT_EXCEEDED, SIZE_LIMIT_EXCEEDED, PARTIAL_RESULTS], classLoader=null, sslSocketFactory=null, hostnameVerifier=null]], providerConnection=org.ldaptive.provider.jndi.JndiConnection@3b71ce7f]>
2018-03-28 04:23:58,280 DEBUG [org.ldaptive.BindOperation] - <execute request=[org.ldaptive.BindRequest@1150006418::bindDn=uid=dgeo,ou=People,dc=nettest,dc=egim, saslConfig=null, controls=[[org.ldaptive.control.PasswordPolicyControl@-350057371::criticality=false, timeBeforeExpiration=0, graceAuthNsRemaining=0, error=null]], referralHandler=null, intermediateResponseHandlers=null] with connection=[org.ldaptive.DefaultConnectionFactory$DefaultConnection@299537016::config=[org.ldaptive.ConnectionConfig@1580413620::ldapUrl=ldaps://ldapr, connectTimeout=PT5S, responseTimeout=PT5S, sslConfig=[org.ldaptive.ssl.SslConfig@845122414::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@863417338::trustCertificates=file:/etc/ssl/caecm.crt, authenticationCertificate=null, authenticationKey=null], trustManagers=null, hostnameVerifier=null, hostnameVerifierConfig=null, enabledCipherSuites=null, enabledProtocols=null, handshakeCompletedListeners=null], useSSL=true, useStartTLS=false, connectionInitializer=null, connectionStrategy=org.ldaptive.DefaultConnectionStrategy@268438ba], providerConnectionFactory=[org.ldaptive.provider.jndi.JndiConnectionFactory@627199471::metadata=[ldapUrl=ldaps://ldapr, count=1], environment={java.naming.ldap.factory.socket=org.ldaptive.ssl.ThreadLocalTLSSocketFactory, com.sun.jndi.ldap.connect.timeout=5000, java.naming.ldap.version=3, java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.protocol=ssl, com.sun.jndi.ldap.read.timeout=5000}, classLoader=null, providerConfig=[org.ldaptive.provider.jndi.JndiProviderConfig@1832314::operationExceptionResultCodes=[PROTOCOL_ERROR, SERVER_DOWN], properties={}, controlProcessor=org.ldaptive.provider.ControlProcessor@1cc879bb, environment=null, tracePackets=null, removeDnUrls=true, searchIgnoreResultCodes=[TIME_LIMIT_EXCEEDED, SIZE_LIMIT_EXCEEDED, PARTIAL_RESULTS], classLoader=null, sslSocketFactory=null, hostnameVerifier=null]], providerConnection=org.ldaptive.provider.jndi.JndiConnection@3b71ce7f]>
2018-03-28 04:23:58,282 DEBUG [org.ldaptive.BindOperation] - <execute response=[org.ldaptive.Response@893041867::result=null, resultCode=SUCCESS, message=null, matchedDn=null, responseControls=null, referralURLs=null, messageId=-1] for request=[org.ldaptive.BindRequest@1150006418::bindDn=uid=dgeo,ou=People,dc=nettest,dc=egim, saslConfig=null, controls=[[org.ldaptive.control.PasswordPolicyControl@-350057371::criticality=false, timeBeforeExpiration=0, graceAuthNsRemaining=0, error=null]], referralHandler=null, intermediateResponseHandlers=null] with connection=[org.ldaptive.DefaultConnectionFactory$DefaultConnection@299537016::config=[org.ldaptive.ConnectionConfig@1580413620::ldapUrl=ldaps://ldapr, connectTimeout=PT5S, responseTimeout=PT5S, sslConfig=[org.ldaptive.ssl.SslConfig@845122414::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@863417338::trustCertificates=file:/etc/ssl/caecm.crt, authenticationCertificate=null, authenticationKey=null], trustManagers=null, hostnameVerifier=null, hostnameVerifierConfig=null, enabledCipherSuites=null, enabledProtocols=null, handshakeCompletedListeners=null], useSSL=true, useStartTLS=false, connectionInitializer=null, connectionStrategy=org.ldaptive.DefaultConnectionStrategy@268438ba], providerConnectionFactory=[org.ldaptive.provider.jndi.JndiConnectionFactory@627199471::metadata=[ldapUrl=ldaps://ldapr, count=1], environment={java.naming.ldap.factory.socket=org.ldaptive.ssl.ThreadLocalTLSSocketFactory, com.sun.jndi.ldap.connect.timeout=5000, java.naming.ldap.version=3, java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.protocol=ssl, com.sun.jndi.ldap.read.timeout=5000}, classLoader=null, providerConfig=[org.ldaptive.provider.jndi.JndiProviderConfig@1832314::operationExceptionResultCodes=[PROTOCOL_ERROR, SERVER_DOWN], properties={}, controlProcessor=org.ldaptive.provider.ControlProcessor@1cc879bb, environment=null, tracePackets=null, removeDnUrls=true, searchIgnoreResultCodes=[TIME_LIMIT_EXCEEDED, SIZE_LIMIT_EXCEEDED, PARTIAL_RESULTS], classLoader=null, sslSocketFactory=null, hostnameVerifier=null]], providerConnection=org.ldaptive.provider.jndi.JndiConnection@3b71ce7f]>
2018-03-28 04:23:58,283 DEBUG [org.ldaptive.auth.PooledBindAuthenticationHandler] - <authenticate response=[org.ldaptive.auth.AuthenticationHandlerResponse@1077506272::connection=[org.ldaptive.DefaultConnectionFactory$DefaultConnection@299537016::config=[org.ldaptive.ConnectionConfig@1580413620::ldapUrl=ldaps://ldapr, connectTimeout=PT5S, responseTimeout=PT5S, sslConfig=[org.ldaptive.ssl.SslConfig@845122414::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@863417338::trustCertificates=file:/etc/ssl/caecm.crt, authenticationCertificate=null, authenticationKey=null], trustManagers=null, hostnameVerifier=null, hostnameVerifierConfig=null, enabledCipherSuites=null, enabledProtocols=null, handshakeCompletedListeners=null], useSSL=true, useStartTLS=false, connectionInitializer=null, connectionStrategy=org.ldaptive.DefaultConnectionStrategy@268438ba], providerConnectionFactory=[org.ldaptive.provider.jndi.JndiConnectionFactory@627199471::metadata=[ldapUrl=ldaps://ldapr, count=1], environment={java.naming.ldap.factory.socket=org.ldaptive.ssl.ThreadLocalTLSSocketFactory, com.sun.jndi.ldap.connect.timeout=5000, java.naming.ldap.version=3, java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.protocol=ssl, com.sun.jndi.ldap.read.timeout=5000}, classLoader=null, providerConfig=[org.ldaptive.provider.jndi.JndiProviderConfig@1832314::operationExceptionResultCodes=[PROTOCOL_ERROR, SERVER_DOWN], properties={}, controlProcessor=org.ldaptive.provider.ControlProcessor@1cc879bb, environment=null, tracePackets=null, removeDnUrls=true, searchIgnoreResultCodes=[TIME_LIMIT_EXCEEDED, SIZE_LIMIT_EXCEEDED, PARTIAL_RESULTS], classLoader=null, sslSocketFactory=null, hostnameVerifier=null]], providerConnection=org.ldaptive.provider.jndi.JndiConnection@3b71ce7f], result=true, resultCode=SUCCESS, message=null, controls=null] for criteria=[org.ldaptive.auth.AuthenticationCriteria@384196913::dn=uid=dgeo,ou=People,dc=nettest,dc=egim, authenticationRequest=[org.ldaptive.auth.AuthenticationRequest@1014970104::user=[org.ldaptive.auth.User@1318682893::identifier=dgeo, context=null], returnAttributes=[supannEmpId, telephoneNumber, eduPersonAffiliation, displayName, givenName, mailLocalAddress, uid, eduPersonPrimaryAffiliation, postalAddress, supannAffectation, supannCivilite, supannEtuId, eduPersonPrincipalName, sn], controls=null]]>
2018-03-28 04:23:58,284 DEBUG [org.ldaptive.auth.PooledSearchEntryResolver] - <resolve criteria=[org.ldaptive.auth.AuthenticationCriteria@384196913::dn=uid=dgeo,ou=People,dc=nettest,dc=egim, authenticationRequest=[org.ldaptive.auth.AuthenticationRequest@1014970104::user=[org.ldaptive.auth.User@1318682893::identifier=dgeo, context=null], returnAttributes=[supannEmpId, telephoneNumber, eduPersonAffiliation, displayName, givenName, mailLocalAddress, uid, eduPersonPrimaryAffiliation, postalAddress, supannAffectation, supannCivilite, supannEtuId, eduPersonPrincipalName, sn], controls=null]]>
2018-03-28 04:23:58,284 DEBUG [org.ldaptive.SearchOperation] - <execute request=[org.ldaptive.SearchRequest@-1726133887::baseDn=, searchFilter=[org.ldaptive.SearchFilter@1642584434::filter=(objectClass=*), parameters={}], returnAttributes=[1.1], searchScope=OBJECT, timeLimit=PT0S, sizeLimit=1, derefAliases=null, typesOnly=false, binaryAttributes=null, sortBehavior=UNORDERED, searchEntryHandlers=null, searchReferenceHandlers=[org.ldaptive.referral.SearchReferralHandler$SearchReferenceHandler@a77ba62], controls=null, referralHandler=org.ldaptive.referral.SearchReferralHandler@6dceaa21, intermediateResponseHandlers=null] with connection=[org.ldaptive.DefaultConnectionFactory$DefaultConnection@164470667::config=[org.ldaptive.ConnectionConfig@953988386::ldapUrl=ldaps://ldapr, connectTimeout=PT5S, responseTimeout=PT5S, sslConfig=[org.ldaptive.ssl.SslConfig@265454667::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@863417338::trustCertificates=file:/etc/ssl/caecm.crt, authenticationCertificate=null, authenticationKey=null], trustManagers=null, hostnameVerifier=null, hostnameVerifierConfig=null, enabledCipherSuites=null, enabledProtocols=null, handshakeCompletedListeners=null], useSSL=true, useStartTLS=false, connectionInitializer=null, connectionStrategy=org.ldaptive.DefaultConnectionStrategy@5c4d01f2], providerConnectionFactory=[org.ldaptive.provider.jndi.JndiConnectionFactory@545603784::metadata=[ldapUrl=ldaps://ldapr, count=1], environment={java.naming.ldap.factory.socket=org.ldaptive.ssl.ThreadLocalTLSSocketFactory, com.sun.jndi.ldap.connect.timeout=5000, java.naming.ldap.version=3, java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.protocol=ssl, com.sun.jndi.ldap.read.timeout=5000}, classLoader=null, providerConfig=[org.ldaptive.provider.jndi.JndiProviderConfig@1524669423::operationExceptionResultCodes=[PROTOCOL_ERROR, SERVER_DOWN], properties={}, controlProcessor=org.ldaptive.provider.ControlProcessor@784ed40c, environment=null, tracePackets=null, removeDnUrls=true, searchIgnoreResultCodes=[TIME_LIMIT_EXCEEDED, SIZE_LIMIT_EXCEEDED, PARTIAL_RESULTS], classLoader=null, sslSocketFactory=null, hostnameVerifier=null]], providerConnection=org.ldaptive.provider.jndi.JndiConnection@737b1595]>
2018-03-28 04:23:58,288 DEBUG [org.ldaptive.SearchOperation] - <execute response=[org.ldaptive.Response@2045937714::result=[org.ldaptive.SearchResult@-1951941189::entries=[[dn=[], responseControls=null, messageId=-1]], references=[]], resultCode=SUCCESS, message=null, matchedDn=null, responseControls=null, referralURLs=null, messageId=-1] for request=[org.ldaptive.SearchRequest@-1726133887::baseDn=, searchFilter=[org.ldaptive.SearchFilter@1642584434::filter=(objectClass=*), parameters={}], returnAttributes=[1.1], searchScope=OBJECT, timeLimit=PT0S, sizeLimit=1, derefAliases=null, typesOnly=false, binaryAttributes=null, sortBehavior=UNORDERED, searchEntryHandlers=null, searchReferenceHandlers=[org.ldaptive.referral.SearchReferralHandler$SearchReferenceHandler@a77ba62], controls=null, referralHandler=org.ldaptive.referral.SearchReferralHandler@6dceaa21, intermediateResponseHandlers=null] with connection=[org.ldaptive.DefaultConnectionFactory$DefaultConnection@164470667::config=[org.ldaptive.ConnectionConfig@953988386::ldapUrl=ldaps://ldapr, connectTimeout=PT5S, responseTimeout=PT5S, sslConfig=[org.ldaptive.ssl.SslConfig@265454667::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@863417338::trustCertificates=file:/etc/ssl/caecm.crt, authenticationCertificate=null, authenticationKey=null], trustManagers=null, hostnameVerifier=null, hostnameVerifierConfig=null, enabledCipherSuites=null, enabledProtocols=null, handshakeCompletedListeners=null], useSSL=true, useStartTLS=false, connectionInitializer=null, connectionStrategy=org.ldaptive.DefaultConnectionStrategy@5c4d01f2], providerConnectionFactory=[org.ldaptive.provider.jndi.JndiConnectionFactory@545603784::metadata=[ldapUrl=ldaps://ldapr, count=1], environment={java.naming.ldap.factory.socket=org.ldaptive.ssl.ThreadLocalTLSSocketFactory, com.sun.jndi.ldap.connect.timeout=5000, java.naming.ldap.version=3, java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.protocol=ssl, com.sun.jndi.ldap.read.timeout=5000}, classLoader=null, providerConfig=[org.ldaptive.provider.jndi.JndiProviderConfig@1524669423::operationExceptionResultCodes=[PROTOCOL_ERROR, SERVER_DOWN], properties={}, controlProcessor=org.ldaptive.provider.ControlProcessor@784ed40c, environment=null, tracePackets=null, removeDnUrls=true, searchIgnoreResultCodes=[TIME_LIMIT_EXCEEDED, SIZE_LIMIT_EXCEEDED, PARTIAL_RESULTS], classLoader=null, sslSocketFactory=null, hostnameVerifier=null]], providerConnection=org.ldaptive.provider.jndi.JndiConnection@737b1595]>
2018-03-28 04:23:58,288 DEBUG [org.ldaptive.auth.PooledSearchEntryResolver] - <searching for entry using userFilter>
2018-03-28 04:23:58,288 DEBUG [org.ldaptive.SearchOperation] - <execute request=[org.ldaptive.SearchRequest@1936206508::baseDn=ou=People,dc=nettest,dc=egim, searchFilter=[org.ldaptive.SearchFilter@514537883::filter=uid={user}, parameters={context=null, dn=uid=dgeo,ou=People,dc=nettest,dc=egim, user=dgeo}], returnAttributes=[supannEmpId, telephoneNumber, eduPersonAffiliation, displayName, givenName, mailLocalAddress, uid, eduPersonPrimaryAffiliation, postalAddress, supannAffectation, supannCivilite, supannEtuId, eduPersonPrincipalName, sn], searchScope=SUBTREE, timeLimit=PT0S, sizeLimit=0, derefAliases=null, typesOnly=false, binaryAttributes=null, sortBehavior=UNORDERED, searchEntryHandlers=null, searchReferenceHandlers=[org.ldaptive.referral.SearchReferralHandler$SearchReferenceHandler@27934b00], controls=null, referralHandler=org.ldaptive.referral.SearchReferralHandler@28f7a4c, intermediateResponseHandlers=null] with connection=[org.ldaptive.DefaultConnectionFactory$DefaultConnection@164470667::config=[org.ldaptive.ConnectionConfig@953988386::ldapUrl=ldaps://ldapr, connectTimeout=PT5S, responseTimeout=PT5S, sslConfig=[org.ldaptive.ssl.SslConfig@265454667::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@863417338::trustCertificates=file:/etc/ssl/caecm.crt, authenticationCertificate=null, authenticationKey=null], trustManagers=null, hostnameVerifier=null, hostnameVerifierConfig=null, enabledCipherSuites=null, enabledProtocols=null, handshakeCompletedListeners=null], useSSL=true, useStartTLS=false, connectionInitializer=null, connectionStrategy=org.ldaptive.DefaultConnectionStrategy@5c4d01f2], providerConnectionFactory=[org.ldaptive.provider.jndi.JndiConnectionFactory@545603784::metadata=[ldapUrl=ldaps://ldapr, count=1], environment={java.naming.ldap.factory.socket=org.ldaptive.ssl.ThreadLocalTLSSocketFactory, com.sun.jndi.ldap.connect.timeout=5000, java.naming.ldap.version=3, java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.protocol=ssl, com.sun.jndi.ldap.read.timeout=5000}, classLoader=null, providerConfig=[org.ldaptive.provider.jndi.JndiProviderConfig@1524669423::operationExceptionResultCodes=[PROTOCOL_ERROR, SERVER_DOWN], properties={}, controlProcessor=org.ldaptive.provider.ControlProcessor@784ed40c, environment=null, tracePackets=null, removeDnUrls=true, searchIgnoreResultCodes=[TIME_LIMIT_EXCEEDED, SIZE_LIMIT_EXCEEDED, PARTIAL_RESULTS], classLoader=null, sslSocketFactory=null, hostnameVerifier=null]], providerConnection=org.ldaptive.provider.jndi.JndiConnection@737b1595]>
2018-03-28 04:23:58,296 DEBUG [org.ldaptive.auth.Authenticator] - <entry resolution failed for resolver=[org.ldaptive.auth.PooledSearchEntryResolver@1805585462::factory=[org.ldaptive.pool.PooledConnectionFactory@569983182::pool=[org.ldaptive.pool.BlockingConnectionPool@1654653788::name=null, poolConfig=[org.ldaptive.pool.PoolConfig@1168400194::minPoolSize=3, maxPoolSize=10, validateOnCheckIn=false, validateOnCheckOut=true, validatePeriodically=true, validatePeriod=PT5M, validateTimeout=PT5S], activator=null, passivator=org.ldaptive.pool.ClosePassivator@26896590, validator=[org.ldaptive.pool.SearchValidator@1756360392::searchRequest=[org.ldaptive.SearchRequest@-1726133887::baseDn=, searchFilter=[org.ldaptive.SearchFilter@1642584434::filter=(objectClass=*), parameters={}], returnAttributes=[1.1], searchScope=OBJECT, timeLimit=PT0S, sizeLimit=1, derefAliases=null, typesOnly=false, binaryAttributes=null, sortBehavior=UNORDERED, searchEntryHandlers=null, searchReferenceHandlers=[org.ldaptive.referral.SearchReferralHandler$SearchReferenceHandler@a77ba62], controls=null, referralHandler=org.ldaptive.referral.SearchReferralHandler@6dceaa21, intermediateResponseHandlers=null]] pruneStrategy=[org.ldaptive.pool.IdlePruneStrategy@456685::prunePeriod=PT2H, idleTime=PT10M], connectOnCreate=true, connectionFactory=[org.ldaptive.DefaultConnectionFactory@399020171::provider=org.ldaptive.provider.jndi.JndiProvider@20db8cba, config=[org.ldaptive.ConnectionConfig@953988386::ldapUrl=ldaps://ldapr, connectTimeout=PT5S, responseTimeout=PT5S, sslConfig=[org.ldaptive.ssl.SslConfig@265454667::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@863417338::trustCertificates=file:/etc/ssl/caecm.crt, authenticationCertificate=null, authenticationKey=null], trustManagers=null, hostnameVerifier=null, hostnameVerifierConfig=null, enabledCipherSuites=null, enabledProtocols=null, handshakeCompletedListeners=null], useSSL=true, useStartTLS=false, connectionInitializer=null, connectionStrategy=org.ldaptive.DefaultConnectionStrategy@5c4d01f2]], initialized=true, availableCount=3, activeCount=0]], baseDn=ou=People,dc=nettest,dc=egim, userFilter=uid={user}, userFilterParameters=null, allowMultipleEntries=false, subtreeSearch=true, derefAliases=null, referralHandler=org.ldaptive.referral.SearchReferralHandler@28f7a4c, searchEntryHandlers=null]>
org.ldaptive.LdapException: javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; remaining name 'ou=People,dc=nettest,dc=egim'
at org.ldaptive.provider.ProviderUtils.throwOperationException(ProviderUtils.java:55) ~[ldaptive-1.2.3.jar:?]
at org.ldaptive.provider.jndi.JndiConnection.processNamingException(JndiConnection.java:619) ~[ldaptive-1.2.3.jar:?]
at org.ldaptive.provider.jndi.JndiConnection$JndiSearchIterator.initialize(JndiConnection.java:741) ~[ldaptive-1.2.3.jar:?]
at org.ldaptive.provider.jndi.JndiConnection.search(JndiConnection.java:463) ~[ldaptive-1.2.3.jar:?]
at org.ldaptive.SearchOperation.executeSearch(SearchOperation.java:103) ~[ldaptive-1.2.3.jar:?]
at org.ldaptive.SearchOperation.invoke(SearchOperation.java:85) ~[ldaptive-1.2.3.jar:?]
at org.ldaptive.SearchOperation.invoke(SearchOperation.java:15) ~[ldaptive-1.2.3.jar:?]
at org.ldaptive.AbstractOperation.execute(AbstractOperation.java:126) ~[ldaptive-1.2.3.jar:?]
at org.ldaptive.auth.PooledSearchEntryResolver.performLdapSearch(PooledSearchEntryResolver.java:62) ~[ldaptive-1.2.3.jar:?]
at org.ldaptive.auth.AbstractSearchEntryResolver.resolve(AbstractSearchEntryResolver.java:321) ~[ldaptive-1.2.3.jar:?]
at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirContext.java:392) ~[?:1.8.0_162]
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:358) ~[?:1.8.0_162]
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:341) ~[?:1.8.0_162]
at org.ldaptive.provider.jndi.JndiConnection$JndiSearchIterator.search(JndiConnection.java:807) ~[ldaptive-1.2.3.jar:?]
at org.ldaptive.provider.jndi.JndiConnection$JndiSearchIterator.initialize(JndiConnection.java:735) ~[ldaptive-1.2.3.jar:?]
... 216 more
2018-03-28 04:23:58,299 INFO [org.ldaptive.auth.Authenticator] - <Authentication succeeded for dn: uid=dgeo,ou=People,dc=nettest,dc=egim>
2018-03-28 04:23:58,301 DEBUG [org.ldaptive.auth.Authenticator] - <authenticate response=[org.ldaptive.auth.AuthenticationHandlerResponse@1077506272::connection=[org.ldaptive.DefaultConnectionFactory$DefaultConnection@299537016::config=[org.ldaptive.ConnectionConfig@1580413620::ldapUrl=ldaps://ldapr, connectTimeout=PT5S, responseTimeout=PT5S, sslConfig=[org.ldaptive.ssl.SslConfig@845122414::credentialConfig=[org.ldaptive.ssl.X509CredentialConfig@863417338::trustCertificates=file:/etc/ssl/caecm.crt, authenticationCertificate=null, authenticationKey=null], trustManagers=null, hostnameVerifier=null, hostnameVerifierConfig=null, enabledCipherSuites=null, enabledProtocols=null, handshakeCompletedListeners=null], useSSL=true, useStartTLS=false, connectionInitializer=null, connectionStrategy=org.ldaptive.DefaultConnectionStrategy@268438ba], providerConnectionFactory=[org.ldaptive.provider.jndi.JndiConnectionFactory@627199471::metadata=[ldapUrl=ldaps://ldapr, count=1], environment={java.naming.ldap.factory.socket=org.ldaptive.ssl.ThreadLocalTLSSocketFactory, com.sun.jndi.ldap.connect.timeout=5000, java.naming.ldap.version=3, java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.protocol=ssl, com.sun.jndi.ldap.read.timeout=5000}, classLoader=null, providerConfig=[org.ldaptive.provider.jndi.JndiProviderConfig@1832314::operationExceptionResultCodes=[PROTOCOL_ERROR, SERVER_DOWN], properties={}, controlProcessor=org.ldaptive.provider.ControlProcessor@1cc879bb, environment=null, tracePackets=null, removeDnUrls=true, searchIgnoreResultCodes=[TIME_LIMIT_EXCEEDED, SIZE_LIMIT_EXCEEDED, PARTIAL_RESULTS], classLoader=null, sslSocketFactory=null, hostnameVerifier=null]], providerConnection=null], result=true, resultCode=SUCCESS, message=null, controls=null] for dn=uid=dgeo,ou=People,dc=nettest,dc=egim with request=[org.ldaptive.auth.AuthenticationRequest@1014970104::user=[org.ldaptive.auth.User@1318682893::identifier=dgeo, context=null], returnAttributes=[supannEmpId, telephoneNumber, eduPersonAffiliation, displayName, givenName, mailLocalAddress, uid, eduPersonPrimaryAffiliation, postalAddress, supannAffectation, supannCivilite, supannEtuId, eduPersonPrincipalName, sn], controls=null]>
2018-03-28 04:23:58,301 DEBUG [org.apereo.cas.authentication.LdapAuthenticationHandler] - <LDAP response: [[org.ldaptive.auth.AuthenticationResponse@790928989::authenticationResultCode=AUTHENTICATION_HANDLER_SUCCESS, resolvedDn=uid=dgeo,ou=People,dc=nettest,dc=egim, ldapEntry=[dn=uid=dgeo,ou=People,dc=nettest,dc=egim[]], accountState=null, result=true, resultCode=SUCCESS, message=null, controls=null]]>
2018-03-28 04:23:58,302 DEBUG [org.apereo.cas.authentication.support.LdapPasswordPolicyHandlingStrategy] - <Authentication response [DefaultLdapPasswordPolicyHandlingStrategy] is supported by password policy handling strategy [{}]>
2018-03-28 04:23:58,302 DEBUG [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Attempting to examine and handle LDAP password policy via [DefaultLdapPasswordPolicyHandlingStrategy]>
2018-03-28 04:23:58,302 DEBUG [org.apereo.cas.authentication.support.DefaultLdapPasswordPolicyHandlingStrategy] - <No ldap password policy configuration is defined>
2018-03-28 04:23:58,303 DEBUG [org.apereo.cas.authentication.LdapAuthenticationHandler] - <LDAP response returned a result. Creating the final LDAP principal>
2018-03-28 04:23:58,303 DEBUG [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Creating LDAP principal for [dgeo] based on [uid=dgeo,ou=People,dc=nettest,dc=egim] and attributes [[]]>
2018-03-28 04:23:58,304 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <The principal id attribute [uid] is not found. CAS cannot construct the final authenticated principal if it's unable to locate the attribute that is designated as the principal id. Attributes available on the LDAP entry are [[]]. Since principal id attribute is not available, CAS will fall back to construct the principal based on the provided user id: [dgeo]>
2018-03-28 04:23:58,304 DEBUG [org.apereo.cas.authentication.LdapAuthenticationHandler] - <LDAP principal identifier created is [dgeo]>
2018-03-28 04:23:58,305 DEBUG [org.apereo.cas.authentication.LdapAuthenticationHandler] - <The following attributes are requested to be retrieved and mapped: [[]]>
2018-03-28 04:23:58,307 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [supannEmpId] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,307 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [telephoneNumber] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,307 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [eduPersonAffiliation] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,308 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [displayName] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,308 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [givenName] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,309 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [mailLocalAddress] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,309 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [eduPersonPrimaryAffiliation] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,309 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [postalAddress] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,310 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [supannAffectation] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,310 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [supannCivilite] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,310 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [supannEtuId] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,311 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [eduPersonPrincipalName] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,311 WARN [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Requested LDAP attribute [sn] could not be found on the resolved LDAP entry for [uid=dgeo,ou=People,dc=nettest,dc=egim]>
2018-03-28 04:23:58,312 DEBUG [org.apereo.cas.authentication.LdapAuthenticationHandler] - <Created LDAP principal for id [dgeo] and [0] attributes>
signature.asc
Description: OpenPGP digital signature
