Hi Ocean, thanks for your reply. Yes, all LDAP attributes are missing. Merging attributes is supposed to be the default behaviour, but clearly something is up! On Saturday, March 30, 2024 at 1:05:07 a.m. UTC-2:30 Ocean Liu wrote:
> Hi Mike, > > Our set up is very similar with yours: CAS 7, LDAP for authentication and > attribute repository, DUO MFA enabled. > > We migrated from CAS 5.3, we noticed CAS 7 with DUO does add duo related > attribute to the principle. > However we can still see the attributes from the LDAP authentication and > attribute repository. > > > the attributes returned for the principal are from DUO > Are you noticing the attributes from your LDAP ***missing***? If so, that > is not normal. > > > How do we tell CAS to only use the LDAP attribute repository? > I don't think there is a way to do this via configuration, your only hope > probably will be via customization. > > Best, > > Ocean > > On Thursday, March 28, 2024 at 10:31:10 AM UTC-7 Mike S wrote: > > Hi all, > > Our CAS 7.0 system is configured to use OpenLDAP for authentication and > the attribute repository. However, once DUO MFA is enabled via the Fawnoos > blog entry, the attributes returned for the principal are from DUO. How do > we tell CAS to only use the LDAP attribute repository? > > Thanks, > Mike > > > > > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/f188df56-5aa5-4c69-920a-e5930a8773ben%40apereo.org.
