Re: [cas-user] SSL problem (I need tutorial!!) Cas Server on remote machine , Java Cas Client other machine

Hi Carl, thanks to your answer. First of all, yes it is a development environment. I create my own CA into server machine (CAS Server) with this tutorial (http://tekyhost.com/ubuntu-12-04-and-tomcat-7-ssl-implementation/) and everything works fine (https://localhost:8443/cas/login and on other m

Re: [cas-user] SSL problem (I need tutorial!!) Cas Server on remote machine , Java Cas Client other machine

Gianluca, For development, I like to use the openssl tools to create my own CA and use it to sign my own certificates rather than using a self-signed certificate. Here are the notes I use. Lines starting with ($) are the actual commands I enter into the terminal. Create My Own

Re: [cas-user] SSL problem (I need tutorial!!) Cas Server on remote machine , Java Cas Client other machine

Carl, thank you very much for detailed answer. I'm in until 4)... I have created this files: - casserver.crt - casserver.key - casserver.csr - rootCA.pem - rootCA.key - rootCA.srl In 5) I have to install the private key and public certificate in my CAS server using java `keytool` (i don't know ho

Re: [cas-user] SSL problem (I need tutorial!!) Cas Server on remote machine , Java Cas Client other machine

Gianluca, This site [1] has useful `keytool` examples. You should be able to view the contents of your keystore with something like: $ keytool -l -v -keystore /path/to/your/keystore.jks There are some useful troubleshooting tips on SO [2]. To configure Tomcat to use the keystore, you need t

Re: [cas-user] SSL problem (I need tutorial!!) Cas Server on remote machine , Java Cas Client other machine

I just want to add that there is an excellent GUI software for managing all of this stuff (built on OpenSSL), namely xca: http://sourceforge.net/projects/xca/ Best, D. > On Mar 25, 2015, at 10:42 AM, Waldbieser, Carl wrote: > > Gianluca, > > This site [

[cas-user] CAS 3.5.2 + MFA

Hello, As my CAS environment grows and we bring on more and more hosted applications, the one question that I constantly have coming up is MFA. So, I have a few questions about CAS + MFA. Before I get started, I will give a little background information on my environment. We are currently r

Re: [cas-user] CAS 3.5.2 + MFA

Hi Ben, Misagh can weigh in and give you definitive answers, but here¹s my stab at them: 1. No, support for OATH/Google Authenticator has not yet been added into CAS-MFA. 2. CAS-MFA and shib-cas-authn2 will not break each otherŠ With that said, MFA request from Shib side SPs don¹t get passed down