Skip to end of metadata
Go to start of metadata
Table of Contents

This tutorial describes how to configure CAS for LDAP DIGEST-MD5 authentication using OpenLDAP. It was authored in response to CAS-664.

Environment:

Server: Fedora 10 + CAS 3.3.1 + Tomcat 5.5.27 + OpenLDAP 2.4.12 + Cyrus SASL 2.1.22

Client: Fedora 10 + Firefox 3 (in the same computor with Server)

Realm: dell-d830

Config OpenLDAP DIGEST-MD5

1. Edit /etc/openldap/slapd.conf, add the following:

2. /etc/init.d/ldap restart

3. Add a user to OpenLDAP

uid=test,ou=beijing,o=langhua,c=cn

userPassword is 111111

Configure SASL DIGEST-MD5

1. Add a user to SASL

2. Test SASL DIGEST-MD5

Open a console and run:

Open another console and run:

DIGEST-MD5 is ok.

Configure CAS

Refer to the instructions on the LDAP authentication page for configuring CAS for LDAP authentication. In particular, note the sample DIGEST-MD5 configuration example toward the end of the document.

Verify DIGEST-MD5 Authentication in CAS

Ensure that CAS has been deployed with the LDAP authentication handlers configured and that CAS is running. Browse to http://localhost:8080/cas/login, enter test/111111 to login, which should succeed. The following OpenLDAP log showing a successful DIGEST-MD5 authentication is provided for reference.

OpenLDAP slapd.log Showing Successful DIGEST-MD5 Authentication




That's it. Good luck!

Shi Yusen/Beijing Langhua Ltd.
http://www.langhua.cn/

  • No labels