Your browser is remembering which certificate to use, and so long as it
has not been 'locked' (as in the case of a hardware token, lockable
[software] keychain, encrypted key, etc) will continue to simply use it
for as long as the browser as open. Other browsers like Apple's Safari
will even persist the 'memory' between usage sessions.
All in all it's normal behavior and is beyond the control of your CAS
configuration.
On 1/13/14, 4:27 AM, Karlos wrote:
Hi! I'm new with this plataform and need help.
I configured Cas (over Tomcat) with x.509 certificate authentication about
documentation (https://wiki.jasig.org/display/CASUM/X.509+Certificates),
adding the root CA to .keystore and java/securty.
I have added my personal certificate in my web browser.
When I go to https://my.cas.com/login (first time), the web browser ask for
my certificate, I confirm and Cas send to Log In Successful.
In the Cas log, view ACTION: AUTHENTICATION_SUCCES and ACTION:
TICKET_GRATING_TICKET_CREATED
When I logout, the Cas send to Logout successful and the log show, ACTION:
TICKET_GRANTING_TICKET_DESTROYED
The problem is when y go again to https://my.cas.com/login the web browser
don't ask me for confirm the personal certificate, and Cas send directly to
Log In Successful. The Cas log show, ACTION: AUTHENTICATION_SUCCES and
ACTION: TICKET_GRATING_TICKET_CREATED.
I found that only when I closing the browser (no tab), when I acces to
https://my.cas.com/login ask for my personal certificate again.
Any Idea??.
--
View this message in context:
http://jasig.275507.n4.nabble.com/Problem-or-mistake-config-Cas-to-x-509-authentication-tp4661683.html
Sent from the CAS Users mailing list archive at Nabble.com.
--
Ne Desit Virtus,
Sean R. Baker
1LT, MS
United States Army
Office #: (301) 319-0712
Email: sean.ba...@usuhs.edu
--
You are currently subscribed to cas-user@lists.jasig.org as:
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user