> 1) what can be the reason behind the socket timeout error. is it something > to do with CAS.
No, has nothing to do with CAS per se. It's almost certainly an artifact of your system architecture (load balancer/proxy). I don't have any particular advice other than simplify your architecture. > 2) how is the login successful even when there are some exceptions for Proxy > ticket error that we see in the error log. Is there any way we can override > this or fix this - PROXY_GRANTING_TICKET_NOT_CREATED User credential authentication is orthogonal to proxy ticket authentication. Note that proxy authentication requires a callback to the proxy requestor, and that callback is back channel and has some requirements: https transport, valid SSL cert, 20x/30x response code. I would recommend turning up the logging and troubleshooting proxy auth separately after you track down the ST validation issue. M P.S. Please post this kind of note to cas-user in the future. Tx. -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
