Hello, We are setting up new CAS 5.1 Server using JDBC authentication.
Initially, to make it work and bring it up and running we used a temporary simple text password. And Used QUERY based configuration. It worked well and my registered service provider is able to authenticate. Now since finally, we need to authenticate users against the actual encrypted password column. We removed QUERY based configuration and added ENODE based configuration. However, after doing so, we are always getting an error in the logs as: 2017-08-08 03:06:45,689 WARN [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - <Authentication has failed. Credentials may be incorrect or CAS cannot find authentication handler that supports [XXXXXXXXXXX] of type [UsernamePasswordCredential], which suggests a configuration problem.> Here are the cas.properties that I configured: ######################################################################### cas.authn.jdbc.encode[0].numberOfIterations=1000 # cas.authn.jdbc.encode[0].numberOfIterationsFieldName=numIterations cas.authn.jdbc.encode[0].saltFieldName=PasswordSalt # cas.authn.jdbc.encode[0].staticSalt= cas.authn.jdbc.encode[0].sql=SELECT * FROM Login L INNER JOIN Contact C ON C.ContactID = L.ContactID WHERE C.Email=? # cas.authn.jdbc.encode[0].algorithmName=SHA-1 cas.authn.jdbc.encode[0].passwordFieldName=EncryptedPassword # cas.authn.jdbc.encode[0].expiredFieldName= cas.authn.jdbc.encode[0].disabledFieldName=IsLocked # cas.authn.jdbc.encode[0].healthQuery= # cas.authn.jdbc.encode[0].isolateInternalQueries=false cas.authn.jdbc.encode[0].url=*<MASKED>* # cas.authn.jdbc.encode[0].failFast=true # cas.authn.jdbc.encode[0].isolationLevelName=ISOLATION_READ_COMMITTED cas.authn.jdbc.encode[0].dialect=org.hibernate.dialect.SQLServerDialect # cas.authn.jdbc.encode[0].leakThreshold=10 # cas.authn.jdbc.encode[0].propagationBehaviorName=PROPAGATION_REQUIRED # cas.authn.jdbc.encode[0].batchSize=1 cas.authn.jdbc.encode[0].user=*<Masked>* # cas.authn.jdbc.encode[0].ddlAuto=create-drop # cas.authn.jdbc.encode[0].maxAgeDays=180 cas.authn.jdbc.encode[0].password=*<Masked>* # cas.authn.jdbc.encode[0].autocommit=false cas.authn.jdbc.encode[0].driverClass=com.microsoft.sqlserver.jdbc.SQLServerDriver cas.authn.jdbc.encode[0].passwordEncoder.type=DEFAULT cas.authn.jdbc.encode[0].passwordEncoder.characterEncoding=UTF-8 cas.authn.jdbc.encode[0].passwordEncoder.encodingAlgorithm=SHA-1 ######################################################################### Thanks & regards, Navdeep Singh -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS project website: https://github.com/apereo/cas --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAKB-tq1OzvAiVsjSpShziua1S-MU0VQS03zGn%3DbGa4azNOD%2BcA%40mail.gmail.com.
