Re: [cas-user] CAS 5.0.0 SPNEGO - How to send a view after a failed authentication

You will likely need to adjust the login flow to account for a different view other than the default login view. --  Misagh From: Philippe MARASSE Reply: Philippe MARASSE Date: August 12, 2016 at 6:31:53 AM To: 

Re: [cas-user] Hazelcast ticket registry in CAS 4.1.9, connection refused error when startup

Just an info message telling that HZ cannot connect to other members of a cluster as there are no other members (by default it auto forms the cluster on ports 5701… and auto increments it for members joining the cluster). So, in short, nothing to worry about here. Cheers, D. > On Aug 12,

Re: [cas-user] New to CAS, new to Apereo

Thanks, Chris, great information. Hank On Friday, August 12, 2016 at 9:36:12 AM UTC-4, Christopher Myers wrote: > > Actually, CAS is just an application that's deployed on an app server, so > they're all on the same boxes. Each VM has a Tomcat instance that's running > CAS, so we have four

[cas-user] Hazelcast ticket registry in CAS 4.1.9, connection refused error when startup

Hi, I am using Hazelcast as the ticket registry for my CAS 4.1.9 overlay. On my local instance of CAS, in the cas.properties, I specified this: hz.cluster.members=localhost When starting up CAS, it works fine, but I see these error messages, It fails to connect on ports 5702, 5703, etc.

Re: [cas-user] New to CAS, new to Apereo

Actually, CAS is just an application that's deployed on an app server, so they're all on the same boxes. Each VM has a Tomcat instance that's running CAS, so we have four SLES12 VMs, each running a copy of CAS on Tomcat, and each VM is running on a different physical host. (We use SLES12 for our

[cas-user] CAS 5.0.0 SPNEGO - How to send a view after a failed authentication

Folks, Actually, when SPNEGO authentication fails, it's falling back to login form (wether cas.authn.spnego.send401OnAuthenticationFailure is true or false). But in our configuration, on a failure, we need to send a specific view. How can I achieve that behavior ? Regards. -- Philippe MARASSE

Re: [cas-user] New to CAS, new to Apereo

Chris, So you have TC and CAS on separate boxes. Is it possible to have both on the same box or is it better to have them separate? It sounds like in your environment you have quite a few services configured which is why you chose to separate the roles to different servers. So, e.g. having CAS

Re: [cas-user] New to CAS, new to Apereo

Likewise, we have 3+1 (two primary, one secondary, and an "oh crud the entire production VMWare environment went offline" backup.) All are running 4.0.x, connected together with hazelcast replication. We've got over 20 registered services, including connecting Shibboleth to CAS for its

Re: [cas-user] New to CAS, new to Apereo

We have a similar deployment but are moving to nginx+ and as the front-end instead of apache+mod_jk. This should give us the ability to bring backend Tomcat/CAS nodes in and out of production without a service outage. We are also running with a json backed service registry, instead of pulling in

Re: [cas-user] CAS 5.0.0 SPNEGO issue

Done. #1946 Le 11/08/2016 à 22:27, Misagh Moayyed a écrit : > Possibly. Could you issue a pull with the updates you have in mind to > the docs? > > -- > Misagh > > From: Philippe MARASSE > > Reply: Philippe MARASSE

Re: [cas-user] New to CAS, new to Apereo

Hello, 1. Here we have about 1400 employees, our architecture is pretty simple : 2 front servers sharing a virtual IP (active/passive, apache + mod_jk), 2 CAS applications servers (CAS v3.5, Clustered tomcat, EHCache ticket registry, JPA Service registry). It works like a charm since 2012. 2.

[cas-user] Principal Enhancer.

Hi, I'm using SearchModeSearchDatabaseAuthenticationHandler as the primary AuthenticationHandler, it seems to work, but how can i enhance the principal so that it contains the Authorities or Roles. Thanks. -- You received this message because you are subscribed to the Google Groups "CAS