I just went through the process of configuring CAS (v3.0.7) to use LDAP
fastbinds for authentication according to the documentation provided at the
following URL:
http://www.ja-sig.org/products/cas/server/ldapauthhandler/index.html
There are two critical elements missing from the documentation (see below).
Other than these two issues the process has been straight forward. Thanks to all
the people who've done so much work on this.
How would I go about having the documentation updated with the information I
provide below? I don't want others to struggle with this.
Here's how it went for me.
After following the above mentioned instructions I attempted to use CAS and
received an error page stating the CAS was unavailable due to an error. I read
through the archives of this list and discovered that the recommended bean
configuration for HttpBasedServiceCredentialsAuthenticationHandler needed to be
further tweaked. Rather than this:
<bean
class="org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler"
/>
I needed this:
<bean
class="org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler">
<property name="httpClient" ref="httpClient" />
</bean>
With this change in place I rebuilt the war, redeployed it and restarted Tomcat.
Again I attempted to use CAS and received an error page stating that CAS was
unavailable but with a different stack trace. I read through the archives of
this list again in search of a lead and discovered that I needed ldapbp-1.0.jar
(in addition to spring-ldap-1.1.2.jar and cas-server-ldap-3.0.7.jar). NOTE: This
jar is available at the following URL:
http://developer.ja-sig.org/maven2/com/sun/jndi/ldap/ldapbp/1.0/ldapbp-1.0.jar
So I loaded this into localPlugins/lib/ and rebuilt the jar and war, redeployed
it and restarted Tomcat. Everything worked like a charm!
-S2
--
Steve Moitozo II
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
