Hi Quentin Thank you for the fast replay. I double checked SOGoXSRFValidationEnabled and it was set to NO I changed canAuthenticate to YES. Unfortunately that didn't do the trick. Still the same error… Here the relevant part of my config
SOGoAuthenticationType = "cas"; SOGoCASProxyTicket = NO; /* CAS Configuration */ SOGoCASServiceURL = "https://cas.bws-uster.ch/cas";; SOGoXSRFValidationEnabled = NO; SOGoUserSources = ( { // Used for user authentication type = ldap; id = users; canAuthenticate = YES; isAddressBook = NO; displayName = "LDAP Lookup"; hostname = "ldap://127.0.0.1:389";; baseDN = "****"; bindDN = "****"; bindPassword = "****"; filter = "objectClass=mailUser AND accountStatus=active AND enabledService=mail AND enabledService=sogo"; scope = SUB; userPasswordAlgorithm = ssha512; CNFieldName = cn; IDFieldName = uid; UIDFieldName = uid; IMAPLoginFieldName = mail; MailFieldNames = (mail); bindFields = (uid); }, Am Dienstag, Juni 03, 2025 10:42 CEST, schrieb "qhivert" ([email protected]) <[email protected]>: Hello, Could you test to set canAuthenticate = YES Even with CAS, sogo will use the usersource to match the uid/mail and fetch other informations about the user. Maybe this parameter set at NO prevent sogo to fetch that. Also, dis you set this param? SOGoXSRFValidationEnabled = NO ; Regards, -- Quentin Hivert || Alinto || R&D Lead Developer 19 Quai Perrache 69002 Lyon www.alinto.com From: [email protected] <[email protected]> On Behalf Of "Ueli Leutwyler" Sent: mardi 3 juin 2025 09:43 To: [email protected] Subject: [SOGo] SOGo CAS Authentication - Config Problem Dear Community I'd like to install CAS Authentication on my sogo server. I'm using iredmail and sogo is directly on the internet (no reverse proxy). I'm using nginx as wevserver. My sogo instance authentication successfully against an openldap server. I also have a running cas server from apereo version 7.2.x The CAS server works with moodle. I changed the following in my sogo.conf SOGoAuthenticationType = "cas"; SOGoCASProxyTicket = NO; /* CAS Configuration */ SOGoCASServiceURL = "https://cas.bws-uster.ch/cas";; In the LDAP config, I set canAuthenticate = No When I try to login I'm redirected correctly to my cas. I can then authenticate and I'm redirecte back do sogo with the url …/SOGo/so/index?ticket=…. Unfortunately, SOGO then redirects me back to the cas server. This happens many time untill the browser detects a redirect loop and stops the request. Any Idea? Thanks for your help. Ueli -- ----------------------------------- Ueli Leutwyler Prorektor Berufswahlschule Uster Rehbühlstrasse 2, 8610 Uster Tel. G.: 043 444 23 44 E-Mail: [email protected] Instagram | Linkedin | YouTube -----------------------------------
