Folks,
I have 2 authentication sources. I have services that I want strictly
to only accept success via a specific source. Even if the same
credential pair could succeed in either.
I've been trying to user the "newer"? authenticationPolicy approaches
as the logs in my 6.2.3 builds were warning about deprecation of the
requiredAuth configurations.
So I have LDAP and Radius both backed by the same LDAP but for other
reasons I want a particular policy to specifically require
authentication to one or the other.
So to force Radius only to be accepted in a service definition I've
tried the below. But if for example, I fail on the Radius auth and then
try again it ends up Authenticating against LDAP1.
Missing something?
authenticationPolicy:
{
"@class":
"org.apereo.cas.services.DefaultRegisteredServiceAuthenticationPolicy",
"requiredAuthenticationHandlers" : ["java.util.TreeSet", [ "Radius" ]],
criteria": {
"@class":
"org.apereo.cas.services.AllowedAuthenticationHandlersRegisteredServiceAuthenticationPolicyCriteria"
}
}
Thanks
Colin
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/d8a738fe-19cf-e46e-69ce-25f6738ead66%40caveo.ca.