-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Moshe-
I have not managed to get mod_auth_cas on Windows to work with a directory of certs yet -- mostly because I have not spent the time searching for or creating a c_rehash for Windows. However, you should be able to simply point the CASCertificatePath directive to the correct Verisign certificate. If you need multiple certificates, due to a certificate chain, you should be able to concatenate them into a single file, and point to that. HTH, - -Matt Moshe Ben-Shoham wrote: > Hi, > > > > I successfully worked with mod_auth_cas in Apache with a self-signed > certificate. I am working with Apache on Windows, and the CAS server > runs on Tomcat. > > > > But when I try working with a certificate I got from VeriSign, I get the > following error message when mod_auth_cas tries to communicate with the > CAS server: > > > > MOD_AUTH_CAS: Could not perform SSL handshake with <my host name> (check > CASCertificatePath) > > > > where <my host name> is the host on which the CAS server is installed. > > > > I know CASCertificatePath should point to a directory where the entire > chain of certs up to the root should exist, but it still doesn?t work. I > also saw in the forums that I may need to run some c_hash command on the > directory, but I work with Windows and that command does not seem to exist? > > > > Any help is appreciated. > > > > Thanks, > > Moshe. > > > > The information contained in this message is proprietary to the sender, > protected from disclosure, and may be privileged. The information is > intended to be conveyed only to the designated recipient(s) of the > message. If the reader of this message is not the intended recipient, > you are hereby notified that any dissemination, use, distribution or > copying of this communication is strictly prohibited and may be > unlawful. If you have received this communication in error, please > notify us immediately by replying to the message and deleting it from > your computer. Thank you. > > > > > > ************************************************************************************ > This footnote confirms that this email message has been scanned by > PineApp Mail-SeCure for the presence of malicious code, vandals & > computer viruses. > ************************************************************************************ > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Yale CAS mailing list > [email protected] > http://tp.its.yale.edu/mailman/listinfo/cas - -- Matthew J. Smith University of Connecticut ITS [EMAIL PROTECTED] PGP KeyID: 0xE9C5244E -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIjxUFGP63pOnFJE4RAsJ2AJ4vvi1Tj+pcasRjx9W9fVdIvqZcxgCbBSx4 eySzw1UrkYstk7n3bur1j0s= =n2aj -----END PGP SIGNATURE----- _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
