Hello Rolly,
I was wondering if by any chance you wrote down how you did the CAS clustering
on JBoss for future use. If you did, would you mind sharing it?
Later this year I'll be clustering CAS on a 2-node jBoss cluster just like you
did, and anything you can share will save me tons of time
We run memcached on the same servers that run CAS. We actually run them with
the repcache patch which means they both have the data in them.
On Tue, Feb 9, 2010 at 2:42 AM, Rolly Ferolino rferol...@gmail.com wrote:
Thanks, Scott. Are you using the same two-node CAS servers as your
memcached
Hey Scott,
Thank you for sharing the info on your installation that uses repcache.
Would you mind sharing your stats? I would love to use it for
comparison/benchmark with our stats for JBOSS-cache.
Thanks,
Rolly
University of Phoenix
On Mon, Feb 8, 2010 at 11:10 AM, Scott Battaglia
In a normal day we've gotten up to about 7K of authentications in one hour.
I've seen significantly more than that in a shorter period of time (possibly
even as low as within 10 minutes). Those stats are from our Web
Registration period which we don't have logged any more.
That is obviously not
We're using a two-node CAS server with memcached to handle about 50K
users. We have plenty of capacity left over. If I remember (or someone
reminds me) I can see if I can gather our authentication/seconds or
authentication/minute stats. I'm not at my desk now so I'll have to do it
tomorrow.
Thanks, Scott. Are you using the same two-node CAS servers as your memcached
servers; or do you have separate servers for your memcached. One thing that
worries us about memcached is the single-point of failure. Do you use a
backend DB to reduce the risk (check memchached, if not exists check DB
Scott,
Thanks for this info. Could you tell me what TicketRegistry provider do you
use to replicate the tickets? We will be using JBOSS Cache on a four-node
Tomcat cluster. Do you use synchronous multicast or async? I appreciate all
other pointers that you can share for clustering.
Thanks,
Azhar,
Thank you for your suggestion. Initially, I had the same concern. However,
Scott's reply verified that terminating SSL at the VIP works.
Rolly
On Thu, Feb 4, 2010 at 8:53 PM, Azhar K Mustapha
azhark.musta...@gmail.comwrote:
Dear all,
If I am not mistaken CAS is using a secure cookie
Marvin,
Thank you for the reply. Would you mind sharing your cluster configuration?
We are testing our installation on a four-node Tomcat cluster, using JBOSS
Cache to replicate the TicketRegistry. We are planning to serve 80K users
and I am concern right now on how much users and how many nodes
Hello,
We are in the process of implementing CAS in a four-node cluster behind a
Netscaler VIP. What is the best practice for hosting the SSL certificate? Do
we host it on VIP or the servers? If the VIP is accepting request on port
443, do we forward that request to CAS server port 8443 (SSL) or
What is the best practice for hosting the SSL certificate?
There's no best practice here. If you want to leverage the SSL
offloading capabilities of your load balancing hardware, host the
certificate on the LB and forward the request to a non-SSL port on the
application server. If you feel the
It's really your call. If Netscaler can handle SSL in hardware, it
would be able to offload the CAS servers from encryption processing.
The beauty of this approach is that you only have one certificate and
one host that has to match the name in the certificate.
Since CAS cluster commonly
Dear all,
If I am not mistaken CAS is using a secure cookie called CASTGC to enable
Single Sign On by tracing CAS login. If you tried to load SSL to LB and
redirect http to the application server, I am afraid the Single Sign On
might be affected.
A cheaper way is to buy one SSL certificate which
We terminate SSL at our Cisco ACE and we have no issues with TGTs.
Cheers,
Scott
On Thu, Feb 4, 2010 at 10:53 PM, Azhar K Mustapha azhark.musta...@gmail.com
wrote:
Dear all,
If I am not mistaken CAS is using a secure cookie called CASTGC to enable
Single Sign On by tracing CAS login. If
Dear Scott,
Thanx for the info.
Azhar
On Fri, Feb 5, 2010 at 12:06 PM, Scott Battaglia
scott.battag...@gmail.comwrote:
We terminate SSL at our Cisco ACE and we have no issues with TGTs.
Cheers,
Scott
On Thu, Feb 4, 2010 at 10:53 PM, Azhar K Mustapha
azhark.musta...@gmail.com wrote:
15 matches
Mail list logo