> In fact , I want to be able to use two differents certicates. > > I suppose a client-1 with certificate-1 et an another client-2 with > certificate-2.
Ah, I see. This is a matter of configuring a suitable AuthenticationManager component. You'll need multiple handlers as you are aware, but you need the correct one to fire for the appropriate certificate. Typically the default AuthenticationManagerImpl tries all configured handler before it gives up, but the way X509CertiifcateAuthenticationHandler throws exceptions for some cerificate expiration cases may prevent that desirable behavior in this case. If your logs indicate errors containing stack traces, then that theory is probably right. In that case your only option is to try another AuthenticationManager or develop your own. M -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
