I had a feeling it would be something like that. We should update the documentation to include that.
Geoff From: Jay [mailto:[email protected]] Sent: Tuesday, October 28, 2014 10:50 AM To: [email protected] Subject: Re: [cas-user] Quick LDAP/AD Auth Handler Question I do have a certificate (my_cert_CA.cer) and have put a property like this in the cas.properties. ldap.trustedCert=my_cert_CA.cer And my entries are like this. <bean id="sslConfig" class="org.ldaptive.ssl.SslConfig"> <property name="credentialConfig"> <bean class="org.ldaptive.ssl.X509CredentialConfig" p:trustCertificates="classpath:${ldap.trustedCert}" /> </property> </bean> Cheers Jay On Tue, Oct 28, 2014 at 2:31 PM, Whittaker, Geoffrey <[email protected]<mailto:[email protected]>> wrote: I’m building up a CAS 4 server and I noticed that in the LDAP configs, there’s a property called TrustedCertificate. I don’t see a reference to that in the cas.properties section of the documentation and I’m wondering what I put for the property reference? In CAS 3.5.x I had to point to make sure the server’s cert was in the keystore, but I’m not sure what to do with this property. <bean id="sslConfig" class="org.ldaptive.ssl.SslConfig"> <property name="credentialConfig"> <bean class="org.ldaptive.ssl.X509CredentialConfig" p:trustCertificates="${ldap.trustedCert}" /> <--This is what I’m asking about. </property> </bean> -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
