Cas 6.3.x - SPNEGO / JCIFS Authentication with Active Directory

65 views

Skip to first unread message

Ritesh Tripathi

unread,

Apr 17, 2021, 12:41:23 PM4/17/21

to CAS Community

Folks

I am facing a weird issue and i need support . suggestions from people who have done the CAS Active Directory Integration earlier.

1. Client - On the Mozilla Client - when i m trying to access the CAS server - there is a WWW-Authenticate:Negotiate header - followed by the Service Ticket that is being sent to CAS server.

2. On the CAS server - i m getting error - Invocation Target Exception - where its pointing to jcifsspnego.....line 72 [[ authentication.process(spnegoCredential.getInitToken());]]

I am expecting that this token will be extracted based on the header values of WWW-Negotiate , which is not happening.

In some of the logs, the value of this token is also being printed.

Can someone guide - how to resolve this issue?

My keytab file works on standalone basis and i have validated the same using kinit -k -t .... command.

Requesting people who have done AD integration earlier - to please guide on the above.

Best Regards

Ritesh

Client_Negotiate_Request.png

CAS_Server_Error.png

MIPM GmbH

unread,

May 21, 2021, 4:43:18 AM5/21/21

to CAS Community, Ritesh Tripathi

Hi,

are you able to send your spnego config?

Reply all

Reply to author

Forward

0 new messages