Hello, i ran ldapsearch in docker container :
ldapsearch -h server_host -D "cn=Directory Manager" -w administrateur -b "ou=personnels,ou=XXXXXX,ou=educ,o=gouv,c=fr" uid=myLogin ldapsearch return the correct card. in the ldap log when i connect with cas i see nothing : [11/Oct/2019:08:26:17 +0200] conn=15 op=7019 msgId=5437415 - RESULT err=0 tag=101 nentries=1 etime=0 [11/Oct/2019:08:26:17 +0200] conn=8 op=13150 msgId=5437416 - SRCH base="ou=XXXXXXXX,ou=educ,o=gouv,c=fr" scope=0 filter="(|(objectClass=*)(objectClass=ldapsubentry))" attrs="" Thanks for help ! Best regards, Le jeudi 10 octobre 2019 18:43:00 UTC+2, rbon a écrit : > > Anthony, > > Test your ldap connection from the command line (ldapsearch) or a desktop > app (apache directory studio) to make sure the settings are correct and > there are no network issues. > Then try to add the minimum properties. > I do not have 'principalAttributePassword' in my config. > > Ray > > On Thu, 2019-10-10 at 07:52 -0700, ratm wrote: > > I have installed docker cas 6.0 without database and without connected cas > to an application. > > > Application running fine and i'm searching for connect cas to ldap Oracle > Directory server. > > > When i tried to connect with a login/password into cas 6.0 application i > have this error : > > WHO: myLogin WHAT: Supplied credentials: > > [UsernamePasswordCredential(username=myLogin, source=null)] ACTION: > > AUTHENTICATION_FAILED APPLICATION: CAS > > > > > My cas.properties : > > cas > > . > > authn > > . > > ldap > > [ > > 0 > > ]. > > ldapUrl > > = > > ldap > > : > > //monserveur.uk > > > cas > > . > > authn > > . > > ldap > > [ > > 0 > > ]. > > bindDn > > = > > cn > > = > > Directory > > Manager > > > cas > > . > > authn > > . > > ldap > > [ > > 0 > > ]. > > bindCredential > > = > > myPassword > > > > cas > > . > > authn > > . > > ldap > > [ > > 0 > > ]. > > baseDn > > = > > ou > > = > > personnels > > , > > ou > > = > > XX > > - > > XXX > > - > > XXXX > > , > > ou > > = > > edu > > , > > o > > = > > gov > > , > > c > > = > > uk > > > cas > > . > > authn > > . > > ldap > > [ > > 0 > > ]. > > subtreeSearch > > = > > true > > > cas > > . > > authn > > . > > ldap > > [ > > 0 > > ]. > > searchFilter > > = > > uid > > =% > > s > > > cas > > . > > authn > > . > > ldap > > [ > > 0 > > ]. > > principalAttributePassword > > = > > userPassword > > > cas > > . > > authn > > . > > ldap > > [ > > 0 > > ]. > > principalAttributeList > > = > > cn > > , > > givenName > > , > > mail > > , > > sn > > > > > > > > Note : password is SSHA encoded in ldap. > > How to verify what's wrong ? For example when i put a wrong baseDn or > searchFilter i have the same error. How to perform simple login/password > test to eliminate error ? > > How cas deal with password, ie is the ldap who perform the password > compare or cas ? > > If it's cas who perform password compare how to configure cas for > > Thanks in advance for any helps ! > > -- > > Ray Bon > Programmer Analyst > Development Services, University Systems > 2507218831 | CLE 019 | rb...@uvic.ca <javascript:> > > I respectfully acknowledge that my place of work is located within the > ancestral, traditional and unceded territory of the Songhees, Esquimalt and > WSÁNEĆ Nations. > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/5e0a8f6f-4006-4add-9e0e-6b5f185fd100%40apereo.org.
