Re: [cas-user] Re: cas-overlay-template with cas 5.2.3 and default cas.properties

Did you setup the keystore? On Thursday, March 15, 2018 at 9:55:14 AM UTC-6, Jono Jono wrote: > > There is no message that anything is ready. It only shows the last > warnings about encyption keys. When I visit 8443 though I do see some audit > stuff in the logs. Greping the logs shows nothing

Re: [cas-user] Re: cas-overlay-template with cas 5.2.3 and default cas.properties

There is no message that anything is ready. It only shows the last warnings about encyption keys. When I visit 8443 though I do see some audit stuff in the logs. Greping the logs shows nothing about 8443 or 8080, so I have no feedback about what port its running on. Netstat shows 8443 in use. Not

Re: [cas-user] Re: cas-overlay-template with cas 5.2.3 and default cas.properties

Yes I did. When visiting https://localhost:8443/cas/login The site comes up fine. On Thu, Mar 15, 2018, 8:57 AM Matthew Uribe wrote: > Did you setup the keystore? > > On Thursday, March 15, 2018 at 9:55:14 AM UTC-6, Jono Jono wrote: >> >> There is no message that

Re: [cas-user] Preventing removal of OAuth tokens upon TGT expiration for one service

Hi, We are running into the same issue you had. This is how we set our expiration properties: cas.ticket.tgt.timeToKillInSeconds=7200 cas.ticket.tgt.maxTimeToLiveInSeconds=28800 cas.authn.oauth.refreshToken.timeToKillInSeconds=604800 cas.authn.oauth.accessToken.timeToKillInSeconds=86400

Re: [cas-user] How to define SAML attribute name formats in management webapp?

Awesome. Thanks. -- DAVID A. CURRY, CISSP *DIRECTOR OF INFORMATION SECURITY* INFORMATION TECHNOLOGY 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003 +1 212 229-5300 x4728 • david.cu...@newschool.edu [image: The New School] On Thu, Mar 15, 2018 at 11:41 AM, Travis Schmidt

[cas-user] Custom Spnego webflow filter

Hi All, is there a way to specify a custom filter for Spnego webflow? I'm looking for something like as HostNameSpnegoKnownClientSystemsFilterAction to be used just to filter on custom request parameters. Please, let me know if is there a trick to do this. Thank you in advance. BR --

[cas-user] Re: cas-overlay-template with cas 5.2.3 and default cas.properties

when running the cas server, do you have a message indicating that the server is ready ? What is the output of 'netstat -tlnp' after running the server ? Le mercredi 14 mars 2018 23:55:33 UTC+1, Jono Jono a écrit : > > I am following the instructions to bring this up here: >

[cas-user] Re: How is CAS 4.2.1 configured for LPPE ?

Hi, and thanks for the suggestion, we tried it but it didn't solve the problem. In case there a dependency missing from our system, it was built from Maven and in the POM file with the following dependencies org.jasig.cas cas-server-webapp

Re: [cas-user] Google Authenticator - scratch codes

Mathematically .. think salted hash of list of known values. output is on the card .. you compare the values you have against what they gave you and see if it matches. The salt is unique per card. You buy them in bulk and you get a list of serial numbers = card ID .. usually there's QR so you

[cas-user] How to define SAML attribute name formats in management webapp?

CAS 5.2.x. In the management webapp, on the SAML2 SP tab, there is a box at the bottom labeled "SAML Attribute Name Formats": If you click on the "+" it comes up with a blank to fill in an attribute name, and a drop-down menu to set the value. However, the drop-down menu is empty. I'm

[cas-user] Google Authenticator - scratch codes

Hello CAS users, I've worked out CAS + GAuth + mongodb, but I don't know how does the scratch codes work in terms of CAS? How user can use them ? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions:

Re: [cas-user] Google Authenticator - scratch codes

Forgot the salient bit. The user it's typically like a lottery ticket, but need not be. You say "provide the code for #56 on your card" and they run their finger down the list and type that in. When they get to ~85% of the numbers you mail them a new card. You can also do it electronically

Re: [cas-user] Google Authenticator - scratch codes

Thank you Michael for this knowledge. I get the idea of scratch codes, but how typical user of CAS may use them ? Let's I've lost my phone with Google Authenticator but I remember my credentials and I've got scratch codes generated by CAS GAuth plugin. How can i use them now, when CAS asks me

[cas-user] Re: cas-overlay-template with cas 5.2.3 and default cas.properties

I haven't tried 5.2.3 yet, but when I was using the included Tomcat server, I was using ./build.sh package or ./build.sh run to start it. As Marc said, you should get a message on screen or in the logs showing that CAS is ready. Have you dug into any of the logs yet? cas.log and catalina.out

Re: [cas-user] How to define SAML attribute name formats in management webapp?

Sorry David, No properties to set that, I think you just uncovered a bug. Travis On Thu, Mar 15, 2018 at 7:13 AM David Curry wrote: > > CAS 5.2.x. In the management webapp, on the SAML2 SP tab, there is a box > at the bottom labeled "SAML Attribute Name Formats":

Re: [cas-user] How to define SAML attribute name formats in management webapp?

:-( Not the answer I wanted to hear, but at least I know to stop looking. :-) Should I file a bug report, or does this thread suffice for you to add it to your list? Thanks, --Dave -- DAVID A. CURRY, CISSP *DIRECTOR OF INFORMATION SECURITY* INFORMATION TECHNOLOGY 71 FIFTH AVE., 9TH FL., NEW

Re: [cas-user] How to define SAML attribute name formats in management webapp?

No need, a Pull Request has already been submitted: https://github.com/apereo/cas/pull/3247 When it is merged you should be able to pull the snapshot to try out. Sorry for the inconvenience. Travis On Thu, Mar 15, 2018 at 8:31 AM David Curry wrote: > :-( > > Not