> By the way, client and server(cas) need to be trusted by each other? Yes.
> I only have the server in ssl and the client with the server certificate. Not sure what you mean here. The client cert or its issuer's cert need to be in the _system_ truststore on the CAS server. This is a moot point, of course, if you use a cert issued by a common vendor on the client. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
