Hi, First off thanks to Dmitriy and Travis for your help with my Duo question; moving to version 5.0.0 would be what I would want to do but I think I have a legacy dependency problem that I need to sort out before I can.
Currently I'm working to migrate an old CAS 3.5.2 installation to something that is at least getting security updates. One feature of the 3.5.2 installation is that it uses the original proxy style ClearPass described here: https://apereo.github.io/cas/4.2.x/integration/ClearPass-Proxy-Authentication.html . I can see this is deprecated (and rightly so) and that there is an alternative that uses public key encryption, however thinking about our specific context I know there is a dependant service that uses ClearPass by proxy. I suspect that it'd be about as much work to change that to ClearPass by encryption as it would be to remove ClearPass entirely, and I think a change to encrypted ClearPass would mean we'd have to synchronise the changes to the authentication stack to coincide with the changes to the dependant service (removing ClearPass doesn't have this issue). I don't think changing the dependant service is going to be trivial but long term it obviously needs to happen. So I'm left with what I can do short term. So after quite a lot of preamble/disclaimer here is the problem I've been working on: I followed these instructions (https://apereo.github.io/cas/4.2.x/integration/ClearPass-Proxy-Authentication.html) and on starting Tomcat got an exception: 2016-11-07 12:00:08,802 ERROR [org.springframework.web.context.ContextLoader] - <Context initialization failed> org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'singleSignOnSessionsReportController': Injection of autowired dependencies failed; nested exception is org.springframework.beans.factory.BeanCreationException: Could not autowire field : private org.jasig.cas.authentication.AuthenticationSystemSupport org.jasig.cas.web.report.SingleSignOnSessionsReportController.authenticationSystemSupport; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'defaul tAuthenticationSystemSupport': Injection of autowired dependencies failed; nested exception is org.springframework.beans.factory.BeanCreationException: Could not autowire field: private org.jasig.cas.authentication.AuthenticationTransactionManager org.jasig.cas.authentica tion.DefaultAuthenticationSystemSupport.authenticationTransactionManager; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'defaultAuthenticationTransactionManager': Injection of autowired dependencies failed; nest ed exception is org.springframework.beans.factory.BeanCreationException: Could not autowire field: private org.jasig.cas.authentication.AuthenticationManager org.jasig.cas.authentication.DefaultAuthenticationTransactionManager.authenticationManager; nested exception is or g.springframework.beans.factory.BeanCreationException: Error creating bean with name 'authenticationManager': Injection of resource dependencies failed; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'authenticat ionMetadataPopulators': Cannot create inner bean 'org.jasig.cas.extension.clearpass.CacheCredentialsMetaDataPopulator#38b9242e' of type [org.jasig.cas.extension.clearpass.CacheCredentialsMetaDataPopulator] while setting bean property 'sourceList' with key [2]; nested exce ption is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'org.jasig.cas.extension.clearpass.CacheCredentialsMetaDataPopulator#38b9242e' defined in ServletContext resource [/WEB-INF/deployerConfigContext.xml]: Cannot resolve reference to bean 'encryptedMap' while setting constructor argument; nested exception is org.springframework.beans.factory.NoSuchBeanDefinitionException: No bean named 'encryptedMap' is defined I've taken the liberty of trimming it to that point for brevity sake; there wasn't a bean called encryptedMap so the initialisation of the ClearPass CacheCredentialsMetaDataPopulator failed and in turn the overall context failed to start. After sometime I managed to get past this point by defining a bean like the one below: <bean id="encryptedMap" class="java.util.HashMap"/> This seems to allow the beans to start, and the overall CAS webapp seems to run and allow logins. I still need to find a way to functionally test the ClearPass part however so I don't know if it actually works! My question is two fold: 1) Is the use of HashMap suitable here? 2) Is this the right way to configure this style of ClearPass on this version of CAS (4.2.x)? All the best, Sam Jones -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS project website: https://github.com/apereo/cas --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/eda29d64-eaa3-4f8a-b4dc-499d755a5919%40apereo.org.