What if we are using the same type of setup but using Tomcat with the Apache AJP Proxy and not using the standard 8080 and 8443 Toimcat ports? I have tried to do this and when I connect to SSL it connects fine but since we are connecting to port 80 on the backend server through the load balancer CAS keeps saying insecure even though the client's browser is https.
On Mon, Nov 5, 2012 at 8:19 AM, Marvin Addison <[email protected]>wrote: > > Can anyone tell me if there is an 'offical' process for doing this - or >> can someone send me more detailed descriptions of the changes required to >> the code? >> > > There are no CAS-specific considerations for a load-balanced architecture. > As you noted there are some general security concerns with insecure traffic > passing between CAS nodes and the load balancer; if you're comfortable with > that or have mitigating controls, you should proceed with confidence. > > M > > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- CONFIDENTIALITY NOTICE: This e-mail together with any attachments is proprietary and confidential; intended for only the recipient(s) named above and may contain information that is privileged. You should not retain, copy or use this e-mail or any attachments for any purpose, or disclose all or any part of the contents to any person. Any views or opinions expressed in this e-mail are those of the author and do not represent those of the Baptist School of Health Professions. If you have received this e-mail in error, or are not the named recipient(s), you are hereby notified that any review, dissemination, distribution or copying of this communication is prohibited by the sender and to do so might constitute a violation of the Electronic Communications Privacy Act, 18 U.S.C. section 2510-2521. Please immediately notify the sender and delete this e-mail and any attachments from your computer. -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
