[cas-user] .net CAS client
Good afternoon, We are working with a vendor (PortalGuard) that implemented the CAS 3 protocol for their IDP product. Their logs are showing that our .net application is sending the ticket with extra white space at the end. Has anyone else run into this issue? Thanks! Stephen -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/MWHPR0401MB35946C15F66FE2C66A8862E4A09F0%40MWHPR0401MB3594.namprd04.prod.outlook.com.
[cas-user] .Net Cas client adding returns to ticket.
Good Morning, We are trying to connection our custom application to PortalGuard who is CAS 3 compliant. It seems that the .net cas client that we are using (version 1.1) is injecting into the ticket some white spaces. Because of this, PortalGuard is not able to search its database for the cas ticket. Would anyone know how to remove the white space from the ticket? Any help is greatly appreciated. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/1ad4a79d-0e99-4b87-abf7-8d3085a810a6%40apereo.org.
[cas-user] CAS Training
Good Morning All, I know that we are supposed to just absorb the white papers and stuff from the internet, and I have tried just laying my head on the keyboard to soak up the bits, but it is not transferring fast enough. Does anyone know of a service or website to go to that will teach an A to Z course(s) on CAS? Thanks, Stephen Meier -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To post to this group, send email to cas-user@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/F799E68E2C9E7D4FBC7F3E1AC3E6687207823239%40Exchange01.compsv.cos.pri. For more options, visit https://groups.google.com/a/apereo.org/d/optout.
RE: [cas-user] 500 Error trying to authenticate to application
Thanks for the Help. I looked in the config file and it was there and it was
sent to 10. Does that sound about right?
From: Robert Beer [mailto:r-b...@onu.edu]
Sent: Thursday, August 18, 2016 5:34 PM
To: Stephen Meier
Subject: Re: [cas-user] 500 Error trying to authenticate to application
Stephen,
Yes, try adding that. Additionally make sure the variable is defined. I think
the file is cas.properties. I am at home and not at work right now. If you
cannot find it get back to me.
On Thu, Aug 18, 2016 at 7:14 PM, Stephen Meier
mailto:stephe...@cos.edu>> wrote:
p:timeToDieInSeconds="${st.timeToKillInSeconds}" is not currently in the
cas-servlet.xml. are you saying that it should possibly be in there?
From: cas-user@apereo.org<mailto:cas-user@apereo.org>
[mailto:cas-user@apereo.org<mailto:cas-user@apereo.org>] On Behalf Of Robert
Beer
Sent: Thursday, August 18, 2016 3:25 PM
To: cas-user@apereo.org<mailto:cas-user@apereo.org>
Subject: Re: [cas-user] 500 Error trying to authenticate to application
Stephen,
This may not be the same error but try this:
Edit src/main/webapp/WEB-INF/cas-servlet.xml
156,157c156
< p:serviceManagerUrl="${cas.securityContext.serviceProperties.service}"
< p:timeToDieInSeconds="${st.timeToKillInSeconds}" />
---
> p:serviceManagerUrl="${cas.securityContext.serviceProperties.service}"
> />
277c276
<
---
>
\ No newline at end of file
On Thu, Aug 18, 2016 at 5:38 PM, Stephen Meier
mailto:stephe...@cos.edu>> wrote:
We are using CAS 3.5.2 running on Tomcat 7 and there is one application from
Ellucian that we are having intermitant trouble with. Once the user
authenticates to CAS and tries to get into the webapp they get a 500 error.
I then get the following errors in the web application log
org.jasig.cas.client.validation.TicketValidationException:
org.opensaml.SAMLException: 'service' and 'ticket' parameters are both required
and this error on the CAS server
2016-08-18 13:26:35,653 WARN [org.jasig.cas.util.HttpClient] - Error Sending
message to url endpoint [https://banweb.cos.edu:443/ssomanager/c/SSB]. Error
is [Received fatal alert: unexpected_message]
Anyone see this before?
--
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org<mailto:cas-user+unsubscr...@apereo.org>.
To post to this group, send email to
cas-user@apereo.org<mailto:cas-user@apereo.org>.
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/F799E68E2C9E7D4FBC7F3E1AC3E668720780E35E%40Exchange01.compsv.cos.pri<https://groups.google.com/a/apereo.org/d/msgid/cas-user/F799E68E2C9E7D4FBC7F3E1AC3E668720780E35E%40Exchange01.compsv.cos.pri?utm_medium=email&utm_source=footer>.
For more options, visit https://groups.google.com/a/apereo.org/d/optout.
--
Bob Beer mailto:r-b...@onu.edu>>
Ohio Northern University, Information Technology, Ada, OH 45810
--
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org<mailto:cas-user+unsubscr...@apereo.org>.
To post to this group, send email to
cas-user@apereo.org<mailto:cas-user@apereo.org>.
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAO8K9dddC1WVFfi%2BHtVwQ7k%3D3swymcoiDQL992LOdS6VVOJS8Q%40mail.gmail.com<https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAO8K9dddC1WVFfi%2BHtVwQ7k%3D3swymcoiDQL992LOdS6VVOJS8Q%40mail.gmail.com?utm_medium=email&utm_source=footer>.
For more options, visit https://groups.google.com/a/apereo.org/d/optout.
--
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org<mailto:cas-user+unsubscr...@apereo.org>.
To post to this group, send email to
cas-user@apereo.org<mailto:cas-user@apereo.org>.
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/F799E68E2C9E7D4FBC7F3E1AC3E668720780E459%40Exchange01.compsv.cos.pri<https://groups.google.com/a/apereo.org/d/msgid/cas-user/F799E68E2C9E7D4FBC7F3E1AC3E668720780E459%40Exchange01.compsv.cos.pri?utm_medium=email&utm_source=footer>.
For more options, visit https://groups.google.com/a/apereo.org/d/optout.
--
RE: [cas-user] 500 Error trying to authenticate to application
p:timeToDieInSeconds="${st.timeToKillInSeconds}" is not currently in the
cas-servlet.xml. are you saying that it should possibly be in there?
From: cas-user@apereo.org [mailto:cas-user@apereo.org] On Behalf Of Robert Beer
Sent: Thursday, August 18, 2016 3:25 PM
To: cas-user@apereo.org
Subject: Re: [cas-user] 500 Error trying to authenticate to application
Stephen,
This may not be the same error but try this:
Edit src/main/webapp/WEB-INF/cas-servlet.xml
156,157c156
< p:serviceManagerUrl="${cas.securityContext.serviceProperties.service}"
< p:timeToDieInSeconds="${st.timeToKillInSeconds}" />
---
> p:serviceManagerUrl="${cas.securityContext.serviceProperties.service}"
> />
277c276
<
---
>
\ No newline at end of file
On Thu, Aug 18, 2016 at 5:38 PM, Stephen Meier
mailto:stephe...@cos.edu>> wrote:
We are using CAS 3.5.2 running on Tomcat 7 and there is one application from
Ellucian that we are having intermitant trouble with. Once the user
authenticates to CAS and tries to get into the webapp they get a 500 error.
I then get the following errors in the web application log
org.jasig.cas.client.validation.TicketValidationException:
org.opensaml.SAMLException: 'service' and 'ticket' parameters are both required
and this error on the CAS server
2016-08-18 13:26:35,653 WARN [org.jasig.cas.util.HttpClient] - Error Sending
message to url endpoint [https://banweb.cos.edu:443/ssomanager/c/SSB]. Error
is [Received fatal alert: unexpected_message]
Anyone see this before?
--
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org<mailto:cas-user+unsubscr...@apereo.org>.
To post to this group, send email to
cas-user@apereo.org<mailto:cas-user@apereo.org>.
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/F799E68E2C9E7D4FBC7F3E1AC3E668720780E35E%40Exchange01.compsv.cos.pri<https://groups.google.com/a/apereo.org/d/msgid/cas-user/F799E68E2C9E7D4FBC7F3E1AC3E668720780E35E%40Exchange01.compsv.cos.pri?utm_medium=email&utm_source=footer>.
For more options, visit https://groups.google.com/a/apereo.org/d/optout.
--
Bob Beer mailto:r-b...@onu.edu>>
Ohio Northern University, Information Technology, Ada, OH 45810
--
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org<mailto:cas-user+unsubscr...@apereo.org>.
To post to this group, send email to
cas-user@apereo.org<mailto:cas-user@apereo.org>.
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAO8K9dddC1WVFfi%2BHtVwQ7k%3D3swymcoiDQL992LOdS6VVOJS8Q%40mail.gmail.com<https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAO8K9dddC1WVFfi%2BHtVwQ7k%3D3swymcoiDQL992LOdS6VVOJS8Q%40mail.gmail.com?utm_medium=email&utm_source=footer>.
For more options, visit https://groups.google.com/a/apereo.org/d/optout.
--
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org.
To post to this group, send email to cas-user@apereo.org.
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/F799E68E2C9E7D4FBC7F3E1AC3E668720780E459%40Exchange01.compsv.cos.pri.
For more options, visit https://groups.google.com/a/apereo.org/d/optout.
[cas-user] 500 Error trying to authenticate to application
We are using CAS 3.5.2 running on Tomcat 7 and there is one application from Ellucian that we are having intermitant trouble with. Once the user authenticates to CAS and tries to get into the webapp they get a 500 error. I then get the following errors in the web application log org.jasig.cas.client.validation.TicketValidationException: org.opensaml.SAMLException: 'service' and 'ticket' parameters are both required and this error on the CAS server 2016-08-18 13:26:35,653 WARN [org.jasig.cas.util.HttpClient] - Error Sending message to url endpoint [https://banweb.cos.edu:443/ssomanager/c/SSB]. Error is [Received fatal alert: unexpected_message] Anyone see this before? -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To post to this group, send email to cas-user@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/F799E68E2C9E7D4FBC7F3E1AC3E668720780E35E%40Exchange01.compsv.cos.pri. For more options, visit https://groups.google.com/a/apereo.org/d/optout.
RE: [cas-user] Cas Login using UPN or SamAccountName
thank you so much for that information. I have added that to our test server and I am able to authenticate with both the samaccountname and the userprincipalname. However, I am only getting attributes when I login with the samaccountname. I tried adding the user principal name to the portion of the attribute query, but nothing comes through. would you be willing to share your deployerconfigcontext.xml section with me? From: Andrew Morgan [mor...@orst.edu] Sent: Tuesday, February 02, 2016 9:41 AM To: Stephen Meier Cc: cas-user@apereo.org Subject: Re: [cas-user] Cas Login using UPN or SamAccountName On Tue, 2 Feb 2016, Stephen Meier wrote: > Good Morning all, > > Does anyone use both or either the UPN or the SamaccountName for their > users to login? Sure. We do something similar against our LDAP service. Search against both attributes, like this: in your case: Always make sure that there will only be one match though. For example, don't search for samaccountname on a global catalog server where more than one domain may have the same samaccountname. Andy -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
[cas-user] Cas Login using UPN or SamAccountName
Good Morning all, Does anyone use both or either the UPN or the SamaccountName for their users to login? Stephen Meier College of the Sequoias Systems Administrator 559-737-6210 -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
[cas-user] RE: Attribute Manipulation
I think that I found a way using XSLT in the deployerConfigContext.xml Has anyone been ablt to use xslt in the deployerConfigContext.xml file? From: cas-user@apereo.org [mailto:cas-user@apereo.org] On Behalf Of Stephen Meier Sent: Monday, February 1, 2016 9:32 AM To: cas-user@apereo.org Subject: [cas-user] Attribute Manipulation Good Afternoon All, I was wondering does anyone have a working example of how to manipulate the attributes that CAS receives from Active Directory? I have an field that has an @ symbol at the beginning of the string that I need to remove before I release the attribute to the CAS client. I am not able to change it in Active Directory because of other concerns. Any help at all would be appreciated Stephen Meier College of the Sequoias Systems Administrator 559-737-6210 -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org<mailto:cas-user+unsubscr...@apereo.org>. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
[cas-user] Attribute Manipulation
Good Afternoon All, I was wondering does anyone have a working example of how to manipulate the attributes that CAS receives from Active Directory? I have an field that has an @ symbol at the beginning of the string that I need to remove before I release the attribute to the CAS client. I am not able to change it in Active Directory because of other concerns. Any help at all would be appreciated Stephen Meier College of the Sequoias Systems Administrator 559-737-6210 -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
