The example in-memory one on that page should be for IP+Username. Just a note that by default there is no throttling enabled. It seems from a prior email that you never enabled it?
Cheers, Scott On Thu, Jun 17, 2010 at 12:35 PM, Jeremy Bennett <[email protected]> wrote: > Patrick has been extremely helpful on this issue. I am reading through > the casum link but do not see explicitly the line to include username to the > IP checking. We are using CAS 3.3.5. > > Thanks, > Jeremy > > > > ------------------------------ > *From:* Patrick Berry [mailto:[email protected]] > *Sent:* Thursday, June 17, 2010 11:18 AM > > *To:* [email protected] > *Subject:* Re: [cas-user] trickle down lock out effect > > Yes, it depends on which way you're doing it though. The wiki page > details both in-memory and Inspektr: > > https://wiki.jasig.org/display/CASUM/Throttling+Login+Attempts > > > On Thu, Jun 17, 2010 at 8:12 AM, Jeremy Bennett <[email protected]> wrote: > >> Is this something I add to the CAS configuration? >> >> ------------------------------ >> *From:* Patrick Berry [mailto:[email protected]] >> *Sent:* Thursday, June 17, 2010 11:10 AM >> >> *To:* [email protected] >> *Subject:* Re: [cas-user] trickle down lock out effect >> >> If that is the case there is a IP + username method that can be used. >> >> On Thu, Jun 17, 2010 at 8:02 AM, Nathan Kopp <[email protected]>wrote: >> >>> The last time I looked at the code, the default throttling method was >>> based on IP address. Depending on how you have your network’s >>> routers/proxies/NAT set up, it might look to CAS that all of the users are >>> coming from the same IP address (that of one of your network devices). If >>> so, that would likely cause the issue you are experiencing. >>> >>> >>> >>> *Nathan Kopp* >>> >>> *Applications Strategist* >>> >>> *Information Technology Group* >>> >>> *Campus Crusade for Christ, Int’l* >>> >>> *407-826-2939 Office *|* 407-484-8485 Mobile * |* 407-826-2968 Fax* >>> >>> >>> >>> *From:* Jeremy Bennett [mailto:[email protected]] >>> *Sent:* Thursday, June 17, 2010 10:35 AM >>> *To:* [email protected] >>> *Subject:* [cas-user] trickle down lock out effect >>> >>> >>> >>> >>> >>> We are experiencing strange issues when a user is "throttled" for too >>> many bad login attempts it seems to lock out any users from logging in. >>> >>> We've been calling it the "trickle down lock out effect". >>> >>> >>> >>> Has anyone had experience with this? Or have any ideas? >>> >>> I can show you our cas error log. >>> >>> >>> >>> Thanks, >>> >>> Jeremy >>> >>> *Jeremy R. Bennett >>> *Client Systems Developer/Analyst >>> Narragansett Bay Insurance Company >>> 25 Maple Street >>> Pawtucket, RI 02860 >>> (401) 495-0776 - Direct >>> (401) 495-9776 - Fax >>> >>> *[image: NBIC-logo-CMYK_NoText]** The #1 Choice for Responsible >>> Homeowners <http://www.nbic.com/>* >>> >>> >>> >>> >>> ------------------------------ >>> >>> This e-mail message (including attachments, if any) is intended for the >>> use of the individual or entity to which it is addressed and may contain >>> information that is privileged, proprietary, confidential and exempt from >>> disclosure. If you are not the intended recipient, you are notified that any >>> dissemination, distribution or copying of this communication is strictly >>> prohibited. If you have received this communication in error, please notify >>> the sender and erase this e-mail message immediately. >>> >>> -- >>> >>> You are currently subscribed to [email protected] as: >>> [email protected] >>> >>> >>> >>> To unsubscribe, change settings or access archives, see >>> http://www.ja-sig.org/wiki/display/JSG/cas-user >>> >>> -- >>> You are currently subscribed to [email protected] as: >>> [email protected] >>> To unsubscribe, change settings or access archives, see >>> http://www.ja-sig.org/wiki/display/JSG/cas-user >>> >>> >> -- >> You are currently subscribed to [email protected] as: >> [email protected] >> >> >> >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> >> >> ------------------------------ >> This e-mail message (including attachments, if any) is intended for the >> use of the individual or entity to which it is addressed and may contain >> information that is privileged, proprietary, confidential and exempt from >> disclosure. If you are not the intended recipient, you are notified that any >> dissemination, distribution or copying of this communication is strictly >> prohibited. If you have received this communication in error, please notify >> the sender and erase this e-mail message immediately. >> >> -- >> >> You are currently subscribed to [email protected] as: [email protected] >> >> >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> >> > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > ------------------------------ > This e-mail message (including attachments, if any) is intended for the use > of the individual or entity to which it is addressed and may contain > information that is privileged, proprietary, confidential and exempt from > disclosure. If you are not the intended recipient, you are notified that any > dissemination, distribution or copying of this communication is strictly > prohibited. If you have received this communication in error, please notify > the sender and erase this e-mail message immediately. > > -- > > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
<<image001.jpg>>
