> I can't see how it could be a mismatched certificate problem. I've > independently tested the SAML produced by cas with xmlsec1 using the > certificate I uploaded to Google.
Would it be possible to share a test SAML payload and your cert? While it may be a little uncomfortable to share these, it's perfectly safe from a crypto perspective. It would save some time generating test vectors. I can likely do it myself, but it would be a considerable time sink for me and our dev Google apps domain admin. I'd rather concentrate on analyzing a potential integration problem with existing data. Thanks, M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
