On Thu, Jun 17, 2010 at 11:21 AM, Davood Firoozian < [email protected]> wrote:
> I'm implementing CAS in PKIed environment with AD backend, > Certificates and Microsoft CA. > CAS is up and running with default configuration from > X.509+Certificates User manual and > CredentialsToLDAPAttributePrincipalResolver, > > Some extra features is needed in my implementation: > 1- It's needed some extra attribute checking before successful login, > i.e. expiration date. > Expiration date of the cert? We should allow you to check that from the authentication handler already (or at least I thought) > 2- I want to pass principal attribute based on the service being > signed in. i.e. CN for Service A, and DN for Service B. > anybody's any idea ? > CAS, for the most part, assumes that you have one ID. Cheers, Scott > > -- > Regards > Davood Firoozian > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
