Assuming you added all the LDAP properties.... Did you disable the use of the built-in credentials (casuser/Mellon)?
cas.authn.accept.users: It should be set to an empty value, as shown above. David A. Curry, CISSP Director of Information Security The New School - Information Technology 71 Fifth Ave., 9th Fl. ~ New York, NY 10003 +1 212 229-5300 x4728 ~ [email protected] Sent from my phone; please excuse typos and inane auto-corrections. On Sat, May 12, 2018, 19:34 Lionel Samuel <[email protected]> wrote: > Hi David: > > It's a honor. I read your guide when googling this issue. > > I had added the following to the pom.xml and had rebuilt the war via > './build.sh package' --- and deployed the new WAR to the Tomcat. > > Did I miss anything? > > I can't see the CAS server making a call to our LDAP server --- so it must > somehow be skipping LDAP altogether. > > <dependency> > < <groupId>org.apereo.cas</groupId> > < <artifactId>cas-server-support-ldap</artifactId> > < <version>${cas.version}</version> > < </dependency> > > On Saturday, May 12, 2018 at 4:30:06 PM UTC-7, David Curry wrote: >> >> Did you add the LDAP dependency to pom.xml and rebuild the WAR? >> >> >> David A. Curry, CISSP >> Director of Information Security >> The New School - Information Technology >> 71 Fifth Ave., 9th Fl. ~ New York, NY 10003 >> +1 212 229-5300 x4728 ~ [email protected] >> Sent from my phone; please excuse typos and inane auto-corrections. >> >> >> On Sat, May 12, 2018, 19:16 Lionel Samuel <[email protected]> wrote: >> >>> Hi List: >>> >>> I have a shiny new deployment of CAS5.2.4. I am setting up for LDAP >>> authentication ---- however, >>> HttpBasedServiceCredentialsAuthenticationHandler appears to be leveraged >>> and not LdapAuthenticationHandler.....how do I toggle LDAP authentication? >>> I have followed Any's setting for cas.properties on >>> https://groups.google.com/a/apereo.org/forum/#!topic/cas-user/QtzfZI1gnA4 >>> >>> >>> <Authentication handlers used for this transaction are >>> [HttpBasedServiceCredentialsAuthenticationHandler]> >>> 2018-05-12 16:11:24,362 ERROR >>> [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - >>> <Authentication has failed. Credentials may be incorrect or CAS cannot find >>> authentication handler that supports [lionel101] of type >>> [UsernamePasswordCredential]. Examine the configuration to ensure a method >>> of authentication is defined and analyze CAS logs at DEBUG level to trace >>> the authentication event.> >>> 2018-05-12 16:11:24,363 INFO >>> [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit >>> trail record BEGIN >>> ============================================================= >>> WHO: lionel101 >>> WHAT: Supplied credentials: [lionel101] >>> ACTION: AUTHENTICATION_FAILED >>> APPLICATION: CAS >>> WHEN: Sat May 12 16:11:24 PDT 2018 >>> CLIENT IP ADDRESS: snip >>> SERVER IP ADDRESS: snip >>> ============================================================= >>> >>> -- >>> - Website: https://apereo.github.io/cas >>> - Gitter Chatroom: https://gitter.im/apereo/cas >>> - List Guidelines: https://goo.gl/1VRrw7 >>> - Contributions: https://goo.gl/mh7qDG >>> --- >>> You received this message because you are subscribed to the Google >>> Groups "CAS Community" group. >>> To unsubscribe from this group and stop receiving emails from it, send >>> an email to [email protected]. >>> To view this discussion on the web visit >>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/5c2597a8-0ebd-45b8-953d-341a05204095%40apereo.org >>> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/5c2597a8-0ebd-45b8-953d-341a05204095%40apereo.org?utm_medium=email&utm_source=footer> >>> . >>> >> -- > - Website: https://apereo.github.io/cas > - Gitter Chatroom: https://gitter.im/apereo/cas > - List Guidelines: https://goo.gl/1VRrw7 > - Contributions: https://goo.gl/mh7qDG > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/a/apereo.org/d/msgid/cas-user/49673811-d684-4b8a-a9d7-e7b3cbe34077%40apereo.org > <https://groups.google.com/a/apereo.org/d/msgid/cas-user/49673811-d684-4b8a-a9d7-e7b3cbe34077%40apereo.org?utm_medium=email&utm_source=footer> > . > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XANKjzqpxkdgZ-yhqRbjnBt%3DkTgtpNy4GExwX788_cL6yw%40mail.gmail.com.
