Hello Niva, Could you turn on debugging (CASDebug On), set your LogLevel to debug, run the test again (without LDAP params), and send the logs?
-Matt On Sun, Oct 26, 2014 at 5:56 PM, Niva Agmon <nag...@temple.edu> wrote: > Removed the AuthLDAPurl line and left “require ldap-user xxxxx” - still > getting the same ”Authorization Required” message. > > When the “require user” statement is removed the CAS login is bypassed and > I enter the application directly. > > > > Thanks, > > Niva > > > > > > *From:* Matt Smith [mailto:m...@forsetti.com] > *Sent:* Sunday, October 26, 2014 3:10 PM > *To:* cas-user@lists.jasig.org > *Subject:* Re: [cas-user] mod_auth_cas doesn't pass ldap credentials to > the application > > > > > Can you verify if mod_auth_cas works by itself by removing the AuthLDAPurl > line and using simply "Require user xXxX" ? > > -Matt > > On Oct 26, 2014 2:13 PM, "Niva" <nag...@temple.edu> wrote: > > Hello, > > I'm trying to casify a webapp which is served by apache, but am getting > "Authorization Required" after entering the ldap credentials to the CAS > Login page. > ssl_request.log & ssl_access.log on the application server show: > TLSv1 AES128-SHA "GET /?ticket=ST-64-gJfvc1OeAtjgo2Qdx7aS-np-casxxxx > HTTP/1.1" 484 ( > > This is what's in the ssl.conf: > <Directory "/var/www/html"> > Order allow,deny > Allow from all > AuthType CAS > AuthName "TEST CAS AUTH" > AuthLDAPURL ldaps:// > ldap.example.com:636/ou=People,dc=example,dc=com?uid?one? > require ldap-user xxxxx > </Directory> > > Is there another directive/parameter that will allow authorization and not > just just authentication? > > Setup: > Red Hat Enterprise Linux Server release 6.5 (Santiago) > Apache 2.2 > mod_auth_cas-1.0.9.1 (tried mod_auth_cas-1.0.10.0 unsuccessfully) > mod_authz_ldap > > Thanks, > Niva > -- > You are currently subscribed to cas-user@lists.jasig.org as: > m...@forsetti.com > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > > -- > > You are currently subscribed to cas-user@lists.jasig.org as: nag...@temple.edu > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to cas-user@lists.jasig.org as: m...@forsetti.com > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- m...@forsetti.com PGP: E2144AD8 -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
