> How to create and import certificat created in cas server to client cas in > load balancer mode.
Not sure what you mean here. > I created on and i import it in tomcat lifray instance and i'have an > exception tell me "hostname wrong must be "xx.xx.xx.xx"" >From your previous note, the problem is an SSL hostname verification problem in the proxy callback from CAS to your portal: edu.yale.its.tp.cas.client.CASAuthenticationException: Unable to validate ProxyTicketValidator [[edu.yale.its.tp.cas.client.ProxyTicketValidator proxyList=[null] [edu.yale.its.tp.cas.client.ServiceTicketValidator casValidateUrl=[https://10.128.8.120:8443/cas/proxyValidate] ticket=[ST-3-lnjh6Y01NK5agNw5vBrl-cas] service=[http%3A%2F%2F10.128.8.120%2Fc%2Fportal%2Flogin] renew=false]]] The problem is that you're attempting to callback to the host via IP address, which would cause a hostname mismatch for an SSL certificate issued to a host with a DNS address. You must use the real hostname that is on the CN of your portal certifcate in the proxy callback URL. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
