On Thu, Mar 19, 2009 at 2:32 PM, Koob, Perry B. <[email protected]> wrote:

> Are you able to successfully get CAS to talk to an authenticating
> application with a wildcard cert?
>
> I am having trouble, but I think it is because CAS and the
> authenticating application are on the same server.

i'am in the same case
but i'am not sure is a good idea to do that as the previous post say
i 've juste made a simple ssl client to work
the idea is to register a setDefaultHostnameVerifier
on the HttpsConnectionurl who accept *.your.domain.com,
since this method is static is quite easy(and horrible two)
but i repeat me i'am not sure it's a good idea in  secuirty term
regards
Marc


>
>
> -perry
>
> -----Original Message-----
> From: killbulle [mailto:[email protected]]
> Sent: Tuesday, March 17, 2009 6:02 AM
> To: [email protected]
> Subject: [cas-user] Wildcard certificate is it a good idea
>
>
> Hi,
>
> in my cluster configuration i have 2 frontend;
> and my first idea is to use a wildcard certificate like
> *.cas.domain.com
> the problem is that i must modify setDefaultHostnameVerifier for the
> client
> Are you using this kind off certificates or register all your machine
> cetificates
>
>
> Regards
>  Marc
>
> --
> View this message in context:
> http://www.nabble.com/Wildcard-certificate-is-it-a-good-idea-tp22556778p
> 22556778.html<http://www.nabble.com/Wildcard-certificate-is-it-a-good-idea-tp22556778p%0A22556778.html>
> Sent from the CAS Users mailing list archive at Nabble.com.
>
>
> --
> You are currently subscribed to [email protected] as:
> [email protected]
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-user
>
> --
> You are currently subscribed to [email protected] as:
> [email protected]
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-user
>

-- 
You are currently subscribed to [email protected] as: 
[email protected]
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

Reply via email to