Dave, I haven't worked with Zope before, though I have heard of it. What CAS-client are your clients using? I would expect that if the SSL handshake failed, you wouldn't even see it in your server access logs.
Thanks, Carl Waldbieser ITS System Programmer Lafayette College ----- Original Message ----- From: "David A. Kovacic" <[email protected]> To: [email protected] Sent: Tuesday, October 28, 2014 11:30:48 AM Subject: [cas-user] Issue with Zope and CAS 4.0.0 All, We have gone live in production with CAS 4.0.0 using LDAP authentication and a replicated ehcache in an HA environment. The deployment went fairly smoothly with the exception of one of our clients using a Zope portal and our CAS server to authenticate their users into a database of some sort. Zope is a complete black box to us and unfortunately to our clients as well, so we were hoping someone might have experience and/or some words of wisdom regarding why Zope may not be working correctly. According to our clients Zope was working with out previous rubyCAS servers. What we are seeing in our logs is that the service ticket gets created and then validated, and then an attempt is immediately made to revalidate the service ticket, which is of course failing. The only thing we can guess is that the validation response is never making it back to the server for some reason, such as not trusting the certificate. If anyone has successfully used Zope with ANY version of CAS we would love to hear about it as your experience may give us insight into why it is failing. Dave -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
