> I am trying to grant a service ticket to only those users who are authorized > to that particular service, and not all CAS registered services.
Not as stated. There is support for restricting what services may receive service tickets, but that is based solely on the service URL. There is no way to restrict service ticket delivery based on the authenticated principal, if for no other reason because the service doesn't _know_ the principal until _after_ service ticket validation. You may certainly restrict access to a CAS-enabled service, though, but this is an authorization concern of the CAS client not the CAS server. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
