Yan,
There are two independent steps; bootstp2 -> cas (SP -> IdP), and cas -> okta
(SP -> IdP).
See
https://apereo.github.io/cas/6.6.x/protocol/Protocol-Overview.html#the-bridge
for explanation.
Delegation can be per service or global. I have not used delegation so am
unsure why the cas
HI there,
I am a bit confused with a couple configuration.
Say, client app (bootsp2) wants to authN against CAS 6.6.x via SAML2,
which delegates to Okta IDP using SAML2.
CAS starts up fine, generates meta data for SP as well.
1. my CAS login page, under External Provider, shows "bootsp2",
