Hi Matt, The concatenation solved the problem - Thanks a lot :-)
Moshe -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Matthew J. Smith Sent: Tuesday, July 29, 2008 4:03 PM To: Yale CAS mailing list Subject: Re: Problem using mod_auth_cas in Apache with CA SSL certificate -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Moshe- I have not managed to get mod_auth_cas on Windows to work with a directory of certs yet -- mostly because I have not spent the time searching for or creating a c_rehash for Windows. However, you should be able to simply point the CASCertificatePath directive to the correct Verisign certificate. If you need multiple certificates, due to a certificate chain, you should be able to concatenate them into a single file, and point to that. HTH, - -Matt Moshe Ben-Shoham wrote: > Hi, > > > > I successfully worked with mod_auth_cas in Apache with a self-signed > certificate. I am working with Apache on Windows, and the CAS server > runs on Tomcat. > > > > But when I try working with a certificate I got from VeriSign, I get the > following error message when mod_auth_cas tries to communicate with the > CAS server: > > > > MOD_AUTH_CAS: Could not perform SSL handshake with <my host name> (check > CASCertificatePath) > > > > where <my host name> is the host on which the CAS server is installed. > > > > I know CASCertificatePath should point to a directory where the entire > chain of certs up to the root should exist, but it still doesn?t work. I > also saw in the forums that I may need to run some c_hash command on the > directory, but I work with Windows and that command does not seem to exist? > > > > Any help is appreciated. > > > > Thanks, > > Moshe. > > > > The information contained in this message is proprietary to the sender, > protected from disclosure, and may be privileged. The information is > intended to be conveyed only to the designated recipient(s) of the > message. If the reader of this message is not the intended recipient, > you are hereby notified that any dissemination, use, distribution or > copying of this communication is strictly prohibited and may be > unlawful. If you have received this communication in error, please > notify us immediately by replying to the message and deleting it from > your computer. Thank you. > > > > > > ************************************************************************ ************ > This footnote confirms that this email message has been scanned by > PineApp Mail-SeCure for the presence of malicious code, vandals & > computer viruses. > ************************************************************************ ************ > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Yale CAS mailing list > [email protected] > http://tp.its.yale.edu/mailman/listinfo/cas - -- Matthew J. Smith University of Connecticut ITS [EMAIL PROTECTED] PGP KeyID: 0xE9C5244E -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIjxUFGP63pOnFJE4RAsJ2AJ4vvi1Tj+pcasRjx9W9fVdIvqZcxgCbBSx4 eySzw1UrkYstk7n3bur1j0s= =n2aj -----END PGP SIGNATURE----- _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas (null) ************************************************************************ ************ This footnote confirms that this email message has been scanned by PineApp Mail-SeCure for the presence of malicious code, vandals & computer viruses. ************************************************************************ ************ The information contained in this message is proprietary to the sender, protected from disclosure, and may be privileged. The information is intended to be conveyed only to the designated recipient(s) of the message. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, use, distribution or copying of this communication is strictly prohibited and may be unlawful. If you have received this communication in error, please notify us immediately by replying to the message and deleting it from your computer. Thank you. ************************************************************************************ This footnote confirms that this email message has been scanned by PineApp Mail-SeCure for the presence of malicious code, vandals & computer viruses. ************************************************************************************ _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
