We have successfully implemented Clearpass with our CAS 3.5.2 implementation
and utilized it with Groupwise Webaccess by writing a custom java servlet to
complete the form fill.
However, we have found that if a client browser has javascript disabled the
username and clear-text password will be viewable through the "view source"
option in browsers. I would venture this to be a common outcome and concern
with ClearPass and wondered if anyone on the list has achieved a solution to
this potential security issue.
Any thoughts would be appreciated.
Thanks,
Scott
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
