Here's one that we managed to get working, you can try similar settings to
see if they help
cas.authn.mfa.duo[0].id=mfa-duo
cas.authn.mfa.globalPrincipalAttributePredicate=file:/etc/cas/attributeCollection/DetermineMFA.groovy
cas.authn.mfa.duo[0].rank=0
err sorry, for 6.1 the attributes are
cas.authn.attributeRepository.expirationTime=0
cas.authn.attributeRepository.expirationTimeUnit=MINUTES
On Thursday, October 15, 2020 at 3:38:41 PM UTC-6 Samuel Lyons wrote:
> We have solved an issue very similar to this and is probably this issue.
> What
We have solved an issue very similar to this and is probably this issue.
What happens is that there's a default attribute repository cache that
basically stores the username's hashCode (the username is in like a list
with one value or something like that and then it calls the hashCode()
If I understand what your asking you want to simply use User Name and
Password authentication but using just basic FreeRadius as your
authentication handler?
You can do this easily just following the instructions in the
documentation. There is lot's of other content about MFA and Radius but
Thanks, Jérôme!
Based on the opening statement of "affects the handling of secret keys with
Google Authenticator for multifactor authentication" is it safe to assume
that this only affects CAS implementations that use Google Authenticator
for MFA (as opposed to Duo or another MFA implementation)?
I have noticed this behaviour in 6.1 as well.
Ray
On Thu, 2020-10-15 at 13:51 -0400, Rich Renomeron wrote:
Notice: This message was sent from outside the University of Victoria email
system. Please be cautious with links and sensitive information.
I'm in the process of moving my 5.3.x
I'm in the process of moving my 5.3.x implementation to 6.2.x, and I'm
having a few issues with the cas-management application involving custom
properties on a service. I'm looking for some help figuring out what's
going on.
CAS itself does not show any issues with this service (and in fact I
I am using the hazelcast ticket registry for my distributed deployment and
it is working nice. However, I have different components in the application
which are also using hazelcast. I would like to create my own hazelcast
cluster and have the other apps to connect to it through the HZ client,
Hello,
*CAS Version*: 5.1,
*Deployment: *
1. CAS server: By build a WAR overlay project which contains spnego
configurations. And deployed the cas.war on apache-tomcat-9.0.37. cas runs
on OS: Linux(Red Hat 7.5) (kerberos installed and configured).
2. kdc(AD domain controller): windows
Hi,
Please see: https://apereo.github.io/2020/10/14/gauthvuln/
Thanks.
Best regards,
Jérôme
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message
failed to mentioned running CAS 6.2.1
On Thursday, October 15, 2020 at 1:20:57 AM UTC-5 Pablo Vidaurri wrote:
> I have Oauth working but I see the following in my logs when
> cas-ticket-registry-cleaner runs (using jpa ticket reg):
>
> Caused by: java.lang.ClassNotFoundException:
>
I have Oauth working but I see the following in my logs when
cas-ticket-registry-cleaner runs (using jpa ticket reg):
Caused by: java.lang.ClassNotFoundException:
org.apereo.cas.ticket.refreshtoken.OAuthRefreshTokenExpirationPolicy$OAuthRefreshTokenSovereignExpirationPolicy
I've scanned all
12 matches
Mail list logo