The root of the problem is that the authentication request doesn't contain the principalIdAttribute, which you've defined as 'uid': > request=[org.ldaptive.auth.AuthenticationRequest@1438545291::user=myuser, > retAttrs=[]]
So the authenticated entry doesn't contain that attribute either: > [org.ldaptive.auth.AuthenticationResponse@306513608::authenticationResultCode=AUTHENTICATION_HANDLER_SUCCESS, > ldapEntry=[dn=uid=myuser,ou=personnel,ou=people,dc=unice,dc=fr[]], > accountState=null, result=true, resultCode=SUCCESS, message=null, > controls=null] I didn't see anything wrong in your configuration, hopefully someone with better eyes will take a look. --Daniel Fisher -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user