I'm not sure how to ask this question, so here it goes anyway....
When CAS grant a ticket after a successful login, is the ticket signed with a server x.509 cert? If so, does it use the default tomcat cert used for SSL, or did I miss something in the configuration? Does it encrypt the ticket it sends back with the public key of the service calling it? Or better yet, is there any good documentation on this/these questions? Rob McKennon Unix Admin (fish out of water) -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user