FYI
We use a single CAS server delivering the CAS proxy ticket to our
uPortal cluster.
We do this by configuring each node with a second non clustered https
address. The portal cas client then asks the proxy ticket to be
delivered to this address (different for each node). The clearPass
config grants access to each node.
If you need more info just ask.
Thanks,
Anthony.
On 28/07/11 21:10, Scott Battaglia wrote:
You have to use an implementation of the Clearpass caching mechanism
that supports distributed environments (I think there is an Ehcache
one). Tomcat Session replication won't help you.
Cheers,
Scott
On Wed, Jul 13, 2011 at 12:55 PM, Makarov, Konstantin V.
<[email protected] <mailto:[email protected]>> wrote:
We have two CAS 3.4.7. instances (both with clearPass) behind a Load
Balancer (sticky sessions). ____
A .Net application is using the DotNetCasClient and wants to get
user’s credential via clearPass. All is working from the
configuration standpoint, but often the LB sends the App to the CAS
box which has no credentials (the user authenticated against the
other CAS box), so the App gets no cas credentials.____
What is the best practice to solve this issue? Would it be a good
idea to cluster tomcats and do session replication? Or the App
should be made aware of both CAS machines to check both clearPass?____
How does uPortal work with clearPass in a load balanced environment?____
__ __
__ __
Thank you,____
__ __
Konstantin ____
__ __
--
You are currently subscribed [email protected]
<mailto:[email protected]> as:[email protected]
<mailto:[email protected]>
To unsubscribe, change settings or access archives,
seehttp://www.ja-sig.org/wiki/display/JSG/cas-user
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
