Jérémie,
Here are some loggers for cas ldap:
<AsyncLogger name="org.ldaptive" level="${sys:ldap.log.level}"
includeLocation="true" />
<!-- INFO Authentication failed for dn: ...
DEBUG prints failed log in error reason (among other ldap connection details)
-->
<AsyncLogger name="org.ldaptive.auth" level="debug" additivity="false" />
Make sure you can authenticate / find the user from another application (I do
not know what tools are available for AD).
Check your AD logs to see what it thinks the problem is.
Ray
On Thu, 2023-06-15 at 05:19 -0700, Jérémie wrote:
Notice: This message was sent from outside the University of Victoria email
system. Please be cautious with links and sensitive information.
I've setup a CAS 6.6.8 and an Active Directory on the same server for test
purpose.
I can't authenticate to my AD using an account. It seems that CAS cannot find
the user inside the AD.
Here my cas.properties file (AD section) :
```
# Active Directory
cas.authn.ldap[0].type=AD
cas.authn.ldap[0].ldapUrl=ldap://localhost:389
cas.authn.ldap[0].useStartTls=false
cas.authn.ldap[0].baseDn=DC=AAA,DC=BBB
cas.authn.ldap[0].search-filter=(sAMAccountName={user})
cas.authn.ldap[0].subtreeSearch=true
cas.authn.ldap[0].dn-format=cn=%s,DC=AAA,DC=BBB
```
I'm using a test user for this with the following DN :
CN=cas,CN=Users,DC=AAA,DC=BBB
I don't understand what I'm missing here
Thank you for any help
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/4a457418a20d047b9134fc0cb575ec487c23eb99.camel%40uvic.ca.
