I thought I had asked this question before and never gotten around to responding to results, but I can't find anything in my mail history or archives. Pardon me if this is redundant. I have a CAS client that I want to not participate in SSO so I have the service set with "ssoEnabled":false. As expected each time I access the app login it forces authentication again. But, we also need it to not create a TGC when the user authenticates for that app so that other SSO enabled apps are not authenticated unless the user authenticates using an SSO enabled app. It appears that CAS must create the TGC even for a not SSO enable service. So, is there a way we can have certain defined services immediately delete the TGC once the ST is validated? We would be OK with just purring a fairly short life on the TGC. Can I set lifetime of the TGC based on the service?
Thanks. Ted F. Fisher Server Administrator 323 Hayes Hall Information Technology Services Email: [email protected]<mailto:[email protected]> Phone: 419.372.1626 [Description: BGSU] -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
