I have been working toward updating from CAS 6.0.x to CAS 6.2.x. Most
everything has gone smoothly but I am having trouble with setting up CAS to
be my G Suite third-party Idp. Previously I had been using the Google Apps
Integration (org.apereo.cas:cas-server-support-saml-googleapps) but the
A bit of reverse engineering and I figured out that there's an undocumented
config option that needs to be set in management.properties.
mgmt.InCommonCert=
Taking what Ray had mentioned in another thread, I grabbed the InCommon
entities file, popped the first cert into a file called InCommon.pem
I give up.
I've tried everything. I have no clue. Even again did fresh git clone
and immediate build.sh run with the following world readable
management.properties
cas.server.name=https://xx.xxx.xxx
cas.server.prefix=${cas.server.name}/cas
I believe that the JDBC password policy settings are in the database
authentication settings:
https://apereo.github.io/cas/6.2.x/configuration/Configuration-Properties.html#database-authentication
Specifically
# cas.authn.jdbc.query[0].field-expired=
# cas.authn.jdbc.query[0].field-disabled=