> I have tried the 2 authentification manager found in the jasig wiki:
> 1- DirectMapping Authentication manager
> 2- AuthenticationHandler-to-PrincipalResolver AuthenticationManager
>
> Each time only one x509 resolver works.
Because both have the same credential type. You'll need to create two
c
I have tried the 2 authentification manager found in the jasig wiki:
1- DirectMapping Authentication manager
2- AuthenticationHandler-to-PrincipalResolver AuthenticationManager
Each time only one x509 resolver works.
Anybody say if someone have already deploy CAS with two resolvers for x509
aut
> "but the way X509CertiifcateAuthenticationHandler throws exceptions for some
> cerificate expiration cases may prevent that desirable behavior in this case.
> "
Nevermind. I just realized that you only need one handler for your
case. Presumably both types of certificates are issued by trusted
Sorry, I don't understand
"but the way X509CertiifcateAuthenticationHandler throws exceptions for some
cerificate expiration cases may prevent that desirable behavior in this case. "
My certificate is not expired.
"try another AuthenticationManager"
Where can I find an another Authentifica
> In fact , I want to be able to use two differents certicates.
>
> I suppose a client-1 with certificate-1 et an another client-2 with
> certificate-2.
Ah, I see. This is a matter of configuring a suitable
AuthenticationManager component. You'll need multiple handlers as you
are aware, but you
Thanks for your answer.
I think , I was not clear.
In fact , I want to be able to use two differents certicates.
I suppose a client-1 with certificate-1 et an another client-2 with
certificate-2.
certificate-1 has an UID parameter in the subject of the certificate.
certificate-2 has a CN para
> I have a cas server and I want to use x509 certificate connector.
> The purpose is to be able to authenticate with 2 x509 certificate:
Perhaps I don't understand your use case clearly, but anything that
presumes you can send more than one certificate per request is a
non-starter. The SSL/TLS spe
