CAS does not know how to authenticate you. Define a type https://apereo.github.io/cas/development/installation/Configuration-Properties.html#ldap-authentication
-- Misagh From: Sascha Müller <zaschi...@gmail.com> Reply: Sascha Müller <zaschi...@gmail.com> Date: August 23, 2016 at 11:02:29 PM To: CAS Community <cas-user@apereo.org> Cc: mmoay...@unicon.net <mmoay...@unicon.net> Subject: Re: [cas-user] What are the exact steps to configure CAS 5.0.0 RC1 to use LDAP? Ok. So here's a full rundown of what I've done so far including config files and log. Hope that helps. First of all I've cloned the repository of the CAS war overlay and switched to branch 5.0. Then I've generated a certificate (thekeystore) and put it into '/etc/cas/'. When I run cas, https seems to be working fine. Next I changed the cas.properties to cas.server.name=https://localhost:8443 cas.server.prefix=https://localhost:8443/cas cas.adminPagesSecurity.ip=127\.0\.0\.1 logging.config=file:/etc/cas/config/log4j2.xml # cas.serviceRegistry.config.location: classpath:/services cas.authn.accept.users= ### LDAP settings ### cas.authn.ldap[0].useSsl=false cas.authn.ldap[0].useStartTls=false cas.authn.ldap[0].ldapUrl=ldap://ldapserver.company.com:389/dc=company,dc=com cas.authn.ldap[0].dnFormat=uid=%s,ou=Users,dc=company,dc=com cas.authn.ldap[0].baseDn=dc=company,dc=com cas.authn.ldap[0].connectTimeout=5000 cas.authn.ldap[0].principalAttributeId=uid cas.authn.ldap[0].principalAttributePassword= cas.authn.ldap[0].minPoolSize=3 cas.authn.ldap[0].maxPoolSize=10 cas.authn.ldap[0].validateOnCheckout=true cas.authn.ldap[0].validatePeriodically=true cas.authn.ldap[0].validatePeriod=600 cas.authn.ldap[0].failFast=true cas.authn.ldap[0].idleTime=5000 cas.authn.ldap[0].prunePeriod=5000 cas.authn.ldap[0].blockWaitTime=5000 I got assured by our systems department, that these settings should be ok. I did not touch 'application.yml' or any other file (except the pom.xml, which I attached alongside the cas.log). Now, when I run "./build.sh clean package" & "./build.sh run" the server starts up, but login fails with the message 2016-08-24 07:47:01,453 WARN [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - <Authentication has failed. Credentials may be incorrect or CAS cannot find authentication handler that supports [sam] of type [UsernamePasswordCredential], which suggests a configuration problem.> If you need anything else, please let me know. Thanks in advance. Am Mittwoch, 24. August 2016 06:00:37 UTC+2 schrieb Misagh Moayyed: Without knowing what you have so far, it’s very difficult to say. Either you have misplaced the configuration, or you have misdefined the property keys. -- Misagh From: Sascha Müller <zasc...@gmail.com> Reply: Sascha Müller <zasc...@gmail.com> Date: August 23, 2016 at 7:59:31 AM To: CAS Community <cas...@apereo.org> Subject: [cas-user] What are the exact steps to configure CAS 5.0.0 RC1 to use LDAP? Hey everybody, I tried to configure LDAP login through CAS 5.0.0 RC1 for more or less 4 days now. As far as I understand the documentation, all I have to do is: add the dependency cas-server-support-ldap to my pom.xml and configure ldap support via cas.properties (like url, baseDn etc.). But when I try to login, I get the following message on the console: Cannot find authentication handler that supports [username] of type [UsernamePasswordCredential], which suggests a configuration problem. I get the strong feeling I'm missing something really important here... -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org. To post to this group, send email to cas-...@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/51f27ef4-59b9-4b3e-9cf6-e6908bf3d98d%40apereo.org. For more options, visit https://groups.google.com/a/apereo.org/d/optout. -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To post to this group, send email to cas-user@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/f628b1e7-6a11-48fa-92f2-143866f3e39f%40apereo.org. For more options, visit https://groups.google.com/a/apereo.org/d/optout. -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To post to this group, send email to cas-user@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/etPan.57bdb584.5f7e8184.14a4a%40unicon.net. For more options, visit https://groups.google.com/a/apereo.org/d/optout.
