[cas-user] CAS + LDAP authentication

Fri, 26 Feb 2021 02:43:40 -0800

Hi. I have problem with set up CAS server to authenticate users through LDAP. Is this config (cas.properties) enough? 

cas.server.name: https://localhost:8443
cas.server.prefix: ${cas.server.name}/cas

logging.config: file:/etc/cas/config/log4j2.xml

cas.authn.accept.enabled=false

##LDAP settings
cas.authn.ldap[0].type=AD
cas.authn.ldap[0].ldapUrl=ldap://ldap.server.org/
cas.authn.ldap[0].connectTimeout=5000
cas.authn.ldap[0].useStartTls=false
cas.authn.ldap[0].subtreeSearch=true

cas.authn.ldap[0].baseDn=OU=test,dc=test,dc=test,dc=test,dc=org
cas.authn.ldap[0].bindDn=cn=user,cn=group,dc=test,dc=test,dc=test,dc=org
cas.authn.ldap[0].bindCredential=password

cas.authn.ldap[0].enhanceWithEntryResolver=true
cas.authn.ldap[0].dnFormat=%[email protected]
cas.authn.ldap[0].principalAttributeId=sAMAccountName

cas.authn.ldap[0].principalAttributeList=sAMAccountName,userPrincipalName

cas.authn.ldap[0].searchFilter=sAMAccountName={user}

cas.authn.ldap[0].name=adSomething
cas.authn.ldap[0].order=0

cas.authn.ldap[0].passwordPolicy.type=AD


cas.authn.ldap[0].poolPassivator=BIND
cas.authn.ldap[0].minPoolSize=3
cas.authn.ldap[0].maxPoolSize=10
cas.authn.ldap[0].validateOnCheckout=true
cas.authn.ldap[0].validatePeriodically=true
cas.authn.ldap[0].validatePeriod=600
cas.authn.ldap[0].validateTimeout=5000

cas.authn.ldap[0].passwordPolicy.enabled=true
cas.authn.ldap[0].passwordPolicy.policyAttributes.accountLocked=javax.security.auth.login.AccountLockedException
cas.authn.ldap[0].passwordPolicy.loginFailures=5
cas.authn.ldap[0].passwordPolicy.warningAttributeValue=
cas.authn.ldap[0].passwordPolicy.warningAttributeName=
cas.authn.ldap[0].passwordPolicy.displayWarningOnMatch=true
cas.authn.ldap[0].passwordPolicy.warnAll=true
cas.authn.ldap[0].passwordPolicy.warningDays=30

cas.authn.ldap[0].keystore: file:/etc/cas/config/thekeystore
cas.authn.ldap[0].keystore-password: password
cas.authn.ldap[0].keystore-type: PKCS12

Thanks in advance

--
Bartosz Nitkiewicz

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG

--- 
You received this message because you are subscribed to the Google Groups "CAS Community" group.

To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/893e2b35-4b28-2886-1aaa-237008e685c8%40nitkiewicz.eu.














    











					Reply via email to