> Do I need a certificate from an authorized CA? No.
> Or is there a way to avoid this? Yes. Import the certificate of your CAS server, or the issuer certificate if applicable, into the Java truststore of the CAS client application. There are a number of resources on the Web for doing this if you're familiar with Java SSL setup. I'll make my usual plug for http://java.sun.com/j2se/1.5.0/docs/guide/security/jsse/JSSERefGuide.html; this is required reading if you really want to understand the Java SSL API. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
