Alberto, Thanks for the reply. Yes I have that URL in Services Management. (I just swapped out the domain name for 'server' in that url.)
These are the cas logs created during re-login attempt: 2013-06-13 16:32:16,565 WARN [org.jasig.cas.CentralAuthenticationServiceImpl] - <ServiceManagement: Service Not Allowed to use SSO. Service [https://cas.server.edu/cas/clearPass]> 2013-06-13 16:32:16,566 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: https://webmail.exchange.edu/casOwa?proxyResponse=true WHAT: https://cas.server.edu/cas/clearPass ACTION: SERVICE_TICKET_NOT_CREATED APPLICATION: CAS WHEN: Thu Jun 13 16:32:16 EDT 2013 CLIENT IP ADDRESS: 163.118.171.1 SERVER IP ADDRESS: unknown ============================================================= > 2013-06-13 16:32:16,573 DEBUG [org.jasig.cas.client.util.CommonUtils] - <serviceUrl generated: https://cas.server.edu/cas/clearPass> 2013-06-13 16:32:16,573 DEBUG [org.jasig.cas.client.authentication.AuthenticationFilter] - <no ticket and no assertion found> 2013-06-13 16:32:16,573 DEBUG [org.jasig.cas.client.authentication.AuthenticationFilter] - <Constructed service url: https://cas.server.edu/cas/clearPass> 2013-06-13 16:32:16,573 DEBUG [org.jasig.cas.client.authentication.AuthenticationFilter] - <redirecting to "https://cas.server.edu/cas/login?service=https%3A%2F%2Fcas.server.edu%2Fcas%2FclearPass";> 2013-06-13 16:32:16,577 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor] - <Extractor generated service for: https://cas.server.edu/cas/clearPass> 2013-06-13 16:32:16,577 DEBUG [org.jasig.cas.web.flow.InitialFlowSetupAction] - <Placing service in FlowScope: https://cas.server.edu/cas/clearPass> 2013-06-13 16:32:16,579 DEBUG [org.jasig.cas.web.flow.GenerateLoginTicketAction] - <Generated login ticket LT-109-achn3yveJvdU26LaWaW1yctyEtReeS> 2013-06-13 16:32:16,580 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor] - <Extractor generated service for: https://cas.server.edu/cas/clearPass> --- Abhijit Gaikwad Applications Programmer | T 321-674-8208 | [email protected] -----Original Message----- From: Alberto Cabello Sánchez [mailto:[email protected]] Sent: Thursday, June 13, 2013 2:20 AM To: [email protected] Subject: Re: [cas-user] casOwa + ClearPass On Wed, Jun 12, 2013 at 09:55:38PM +0000, Abhijit Gaikwad wrote: > So, > I have CasOwa > (https://wiki.jasig.org/display/CAS/CASifying+Outlook+Web+Access+2010) CAS > 3.5.1 working with Exchange 2010. I seem to be getting Proxy failure error > with re-login. > > Normal operation works fine, Browse to http(s)://webmail.exchange.edu/casOwa > redirect to CAS for auth and then get redirected to > https://webmail.exchange.edu/owa. [...] > DotNetCasClient.Protocol Information: 3237 : Proxy failure: > The supplied service > 'https://cas.server.edu/cas/clearPass' is not authorized to use CAS > (UNAUTHORIZED_SERVICE) I had a similar problem. Have you got a registered service with that URL in the Services Management? I don't have myself a proxy scenario, but "https://cas.server.edu/cas/clearPass"; seems to me a strange URL. -- ----------------------- Alberto Cabello Sánchez [email protected] -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
