HI!
I'd like to upgrade from 3.4.8 to 3.4.10. My CAS 3.4.8 successfully uses LDAP
and SPNEGO/Kerberos with a customized login-webflow.xml for SPNEGO/Kerberos.
It does not work with 3.4.10 though.
It seems some configuration items were dropped from
https://wiki.jasig.org/display/CASUM/SPNEGO
Michael Ströder wrote:
I'd like to upgrade from 3.4.8 to 3.4.10. My CAS 3.4.8 successfully uses LDAP
and SPNEGO/Kerberos with a customized login-webflow.xml for SPNEGO/Kerberos.
It does not work with 3.4.10 though.
It seems some configuration items were dropped from
I now tried with the attached login-webflow.xml. But it does not work (see
logs excerpts below).
Looks correct to me. Non-interactive authentication doesn't involve
the new generateLoginTicket action, so it shouldn't be relevant to
SPNEGO or other non-interactive auth mechanisms (e.g. X509).
Hello,
I configured CAS with several my applications on different platforms (Java and
PHP). I can login to any of the application, but when I login to one
application and try to open another application it always shows me login page.
What should I do or check to have SSO when I logs in once
I configured CAS with several my applications on different platforms (Java
and PHP). I can login to any of the application, but when I login to one
application and try to open another application it always shows me login page.
The most common cause is accessing the applications over HTTP.
Hello,
Thank you very much for your quick answer. Does it mean that if all my
applications accessible over HTTPS even on different domains SSO will work?
I have network configuration, where I have firewall and balancer which
receives https:// but in internal network redirect via http. Do you
PS. Is it possible in test mode switch off secure flag?
--
Regards,
Dmitry Kudrenko
2011/8/24 Marvin Addison marvin.addi...@gmail.com
I configured CAS with several my applications on different platforms
(Java and PHP). I can login to any of the application, but when I login to
one
Does it mean that if all my applications accessible over HTTPS even on
different
domains SSO will work?
The CAS clients can be on any number of domains; but there's no way to
scope the CAS SSO cookie to anything other than the domain where the
CAS server lives.
I have network configuration,
Marvin Addison wrote:
I now tried with the attached login-webflow.xml. But it does not work (see
logs excerpts below).
Looks correct to me. Non-interactive authentication doesn't involve
the new generateLoginTicket action, so it shouldn't be relevant to
SPNEGO or other non-interactive
Greetings,
On Tue, Aug 23, 2011 at 11:03 AM, Marvin Addison
marvin.addi...@gmail.com wrote:
Error creating bean with name 'authenticationManager' defined in
ServletContext resource [/WEB-INF/deployerConfigContext.xml]: Cannot
create inner bean
Hi,
I am trying to have cas redirect the user(after authentication) to the secured
webapp using a post method. I saw I can do it by adding an additional parameter
'method=POST' like http://cas-server/cas/login?service=myAppUrlmethod=POST
Is there any other way as well?
Also, will it affect
Hello Everyone,
Does anyone know where can i find detailed instructions on installation
and setup of CAS server on Debian. I am running moodle on the same server,
and will use SSO functionality delivered by CAS.
Thanks in advance
--
You are currently subscribed to cas-user@lists.jasig.org as:
Dmitry,
I believe that we are operating in a similar environment as you
regarding SSL offloading. We use Tomcat here, and I am willing to help
you figure out how to get this working if you are interested.
Jeff
On Wed, Aug 24, 2011 at 11:39 AM, Dmitry Kudrenko dmi...@ardas.dp.ua wrote:
Thank
Thank you. I am using jboss. I will let you know if it works for me.
Thank you again.
24.08.2011 21:07 пользователь Jeff Chapin jeff.cha...@uni.edu написал:
Dmitry,
I believe that we are operating in a similar environment as you
regarding SSL offloading. We use Tomcat here, and I am willing
Dear CAS Experts,
I was experimenting with restricting services that are allowed to get a PGT
using the services manager. What I was intending to do was to restrict which
service could act as a proxy (get a PGT) in CAS itself instead of in the CAS
client. I wanted to do this so that I can
Thanks for the docs below. I now know more about CAS proxy
authentication than before. Not enough to be able to set it up on a
Luminis system though.
Has anyone successfully set up CAS proxy authentication on a Sungard
Luminis Platform system (release 4) that comes bundled with CAS? I have
The allowedToProxy feature in the Services Registry isn't sufficient
to replace the functionality of CAS client libraries in validating the
proxy chain, nor to fulfill their responsibility to do so.
The service receiving the proxy ticket needs to decide that the proxying
service was
17 matches
Mail list logo
