I am using CAS version 5.2 with JDBC Authentication handler and was
wondering is it possible to get the other attributes of principal object
(for e.g. password, firstname, lastname) not just the username from CAS
after successful authentication?
--
- Website: https://apereo.github.io/cas
- Git
I have seen the behavior you are describing when people ran cas (tomcat,
mysql, etc.) on a (what I would consider a misconfigured) Linux box with 0
swap.
However you are saying you have 4gb of swap.
I still do prefer to set my swap to 2 * $MY_RAM; can you try that? adjust
or add a swapfile to yo
I have been using this setup within our VMware environment without any
problems.
$ cat bin/setenv.sh
export JAVA_HOME=/u01/app/badm/apps/java/jdk1.8.0_152
export CATALINA_HOME=/u01/app/badm/apps/dev/apache-tomcat-8-auth
export LD_LIBRARY_PATH="$LD_LIBRARY_PATH:/usr/local/apr/lib"
export JAVA_OPTS=
RHEL 7, 8GB ram, swap is 4GB. It's a VM in our vSphere cluster+SAN. I
actually have three, two PROD nodes behind a load balancer and one test
node. All have same specs and all show the issue. Steadily chews up
memory until eventual crash, 1-6 hours depending on load.
The asme servers were r
What is your:
1. operation system
2. how much RAM do you have
3. how much swap do you have
if you are on Linux you can do:
1.uname -a
2-3. free -m
and post the output here
regards,
martin
On Thursday, December 21, 2017 at 11:00:30 AM UTC+11, William E. wrote:
>
> Does anyone have any reco
Hi Jeremie
Have a look at
https://apereo.github.io/cas/5.2.x/installation/Trusted-Authentication.html
Regards
2017-12-20 18:26 GMT-03:00 Jérémie Bourdon :
> Thank you for your reply, Ray.
> System1 would serve as the main authentication server. Server 2 would
> authenticate against CAS and CAS
Does anyone have any recommendations for CATALINA_OPTS for cas 5.x on
tomcat 8?
I am finding that our setup steadily eats up memory to the point that it
eventually crashes from out of memory and has to be restarted.
Current settings:
CATALINA_OPTS="-Djava.awt.headless=true -Dfile.encoding=UTF-
For completeness, this is what worked for me:
I tried the plugin but wasn't having luck in my situation. Maybe I wasn't
doing something right however.
Thanks for the help.
Mike.
tfpo...@ucdavis.edu said:
> Since SAML is almost entirely browser-mediated, try using
Hi Ted,
did you use this class for that service?
"usernameAttributeProvider" : {
"@class" :
"org.jasig.cas.services.PrincipalAttributeRegisteredServiceUsernameProvider",
"usernameAttribute" : "cn"
Which is recommended here
https://apereo.github.io/cas/4.1.x/integration/Attribute-Release
Thank you very much, Ray !
*Jérémie Bourdon*
Chief Information & Data Officer | Lycée Français de New York
505 East 75th Street, New York, NY 10021
t: 212.439.4200 | jbour...@lfny.org | www.lfny.org
On Wed, Dec 20, 2017 at 4:54 PM, Ray Bon wrote:
> You can take a look at https://apereo.gith
You can take a look at
https://apereo.github.io/cas/5.2.x/installation/Configuring-Custom-Authentication.html
More general info on authentication
https://apereo.github.io/cas/5.2.x/installation/Configuring-Authentication-Components.html
Ray
On Wed, 2017-12-20 at 13:26 -0800, Jérémie Bourdon wro
Thank you for your reply, Ray.
System1 would serve as the main authentication server. Server 2 would
authenticate against CAS and CAS would delegate this authentication to
System1.
It's a bit confusing for me as well ;) I don't even know if what I'm
thinking is possible...
On Wednesday, Decem
Jérémie,
Are you saying that System 1 would perform the authentication to CAS on behalf
of the user or that System 1 can connect to System 2 as the user?
CAS has a REST interface
https://apereo.github.io/cas/5.2.x/protocol/REST-Protocol.html
Can System 1 be CASified?
Ray
On Wed, 2017-12-20 a
Tom and Ray, Thanks. I will give these a try.
Mike S.
tfpo...@ucdavis.edu said:
> Since SAML is almost entirely browser-mediated, try using the SAML Decoder
> plugin for Firefox to view the payload.
> Tom.
r...@uvic.ca said:
> Mike,
> This was in my log4j.xml
>
> additivity="false"
Mike,
This was in my log4j.xml
Hope this covers it.
Ray
On Wed, 2017-12-20 at 10:50 -0700, Mike Sullivan wrote:
I am trying to troubleshoot an authentication issue with a vendor and need to
log or look at the SAML response that is being retur
Since SAML is almost entirely browser-mediated, try using the SAML Decoder
plugin for Firefox to view the payload.
Tom.
> On Dec 20, 2017, at 9:50 AM, Mike Sullivan wrote:
>
>
> I am trying to troubleshoot an authentication issue with a vendor and need to
> log or look at the SAML response t
Hello,
We are using 2 online systems that authenticate our users.
System1 : local user authentication, allows other softwares to SSO in
through secret key, token and redirect URL
System 2 : local user authentication, allows authentication against CAS
server.
My idea would be to integrate a C
I am trying to troubleshoot an authentication issue with a vendor and need to
log or look at the SAML response that is being returned. What they are
showing me is not in a format that anyone recognizes. I upgraded CAS from
3.4.1.2 (old) to 3.5.3 (yes, only slightly newer) when the authenticatio
Hi,
I'm getting the exact same problem, I don't know if it's related to CAS or
to Okta but help would be very apreciated.
Thanks
On Tuesday, December 19, 2017 at 1:49:43 PM UTC+1, Ravikumar Ganugapanta
wrote:
>
> Hi,
>
> I am trying to delegate authentication from CAS 5.2 to SAML Idp [Octa]
>
Hi Bob,
We had a CAS 4.0.0 installed on the linux server and now I am trying to
upgrade it with 5.1.3 however, I am getting many issues while doing this. I
have performed the same steps that you have performed but its not working.
It seems like that I am doing some thing wrong. Could you pleas
We are running CAS 4.1.5 and have a problem with attributes included in the
response for one particular service. All other services use our uid as the
"usernameAttribute", except this one which needs to use a different attribute
for that (due to requirement in the application). So, I’m includ
I apologize for refreshing the post but I have exactly the same problem and
I can not find a solution or at least something that would direct me. It's
been a while since from your post so you may have already found the
solution?
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: ht
Hi Tim,
I'm wondering, since you said you had to create the directory... Have you
configured a service registry (JSON or otherwise) into your server, or are
you still using the default "registry" that comes out-of-the-box?
Putting the JSON service description into /etc/cas/services only works if
Hello,
I configured successfully Kerberos authentication with SPNEGO on CAS 5.0.2,
it work fine with IE. Now, I would like to add another domain, to allow
users to use of two different domains with CAS and Kerberos authentication. Is
it possible ? If so, how can I do that? Would someone have a
It seems to work if you put a file named "ehcache-failsafe.xml" in
classpath (it overrides the file in the JAR).
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You rec
25 matches
Mail list logo