Marvin, After changing the checkKeyUsage back to false (along with requireKeyUsage) it all seemed to work. Thanks. So now the other question, when would you want to use these fields (set to true)? What is the pros/cons for setting them to true. Schawn-
________________________________ From: Marvin Addison <[email protected]> To: [email protected] Sent: Wednesday, January 2, 2013 8:42 AM Subject: Re: [cas-user] Configuration specifies checkKeyUsage but keyUsage extension not found in certificate > X509CredentialsAuthenticationHandler - Configuration specifies checkKeyUsage > but keyUsage extension not found in certificate. > Failed to validate The keyUsage check only occurs if the checkKeyUsage setting is enabled on X509CredentialsAuthenticationHandler, which is off by default. Maybe you enabled that while making other unrelated changes to integration LDAP components. They are not related directly in any case. Post your config if you want a second set of eyeballs. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
