Of course you make it seem so simple. Thanks John! Jonathan Liedy Middleware Administrator The Florida State University 2035 East Paul Dirac Drive Sliger, Suite 113 Tallahassee, FL 32310 [email protected] Voice: (850) 270-7368
From: John Gasper [mailto:[email protected]] Sent: Friday, March 20, 2015 2:43 PM To: [email protected] Subject: Re: [cas-user] ehcache/clearPass and password obfuscation I think it's the same as memcached just change backing map from memcache to ehcache... Change the id: <bean id="credentialsCache" class="org.jasig.cas.extension.clearpass.EhcacheBackedMap"> <constructor-arg index="0" ref="clearPassEhCache"/> </bean> to <bean id="ehCacheMap" class="org.jasig.cas.extension.clearpass.EhcacheBackedMap"> <constructor-arg index="0" ref="clearPassEhCache"/> </bean> then add in... <bean id="credentialsCache" class="org.jasig.cas.extension.clearpass.EncryptedMapDecorator"> <constructor-arg index="0" ref="ehCacheMap" /> <constructor-arg index="1" value="salt1234" /> <!-- Replace the salt and secret key with one of your choosing --> <constructor-arg index="2" value="seCretKey0123456" /> </bean> --- John Gasper IAM Consultant Unicon, Inc. PGP/GPG Key: 0xbafee3ef On 3/20/15 9:01 AM, Liedy, Jonathan wrote: All, Version: CAS 3.5.2 Running ehcache for both ticket and password replication. Does anyone on list have a setup configured to obfuscate the cleartext password in memory for ehcache like the memcache replication has? Thanks, Jonathan Liedy Middleware Administrator The Florida State University 2035 East Paul Dirac Drive Sliger, Suite 113 Tallahassee, FL 32310 [email protected]<mailto:[email protected]> Voice: (850) 270-7368 -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
