Hey Misagh,
Could you point me to something about the built in feature for checking if
a user is already registered for MFA/Duo?
On Tuesday, February 6, 2018 at 2:14:53 PM UTC-5, Misagh Moayyed wrote:
>
> Brian, if I have understood things correctly I think you're doing this the
> hard way: I
Any help?!
On Tuesday, February 6, 2018 at 11:31:14 AM UTC+3:30, Meysam Shirazi wrote:
>
> Hello,
>
> I'm trying to use throttling on CAS 4.2.7 but it seems that it's not
> working! I'v done that on CAS 3.5.2 and it worked fine!
> my configuration(based on CAS documentaion):
>
Hello,
I'm working on the cas-management-overlay for 5.x and it doesn't seem to be
honoring the settings in the log4j2-management.xml. In my
management.properties I have:
cas.log.dir=/u01/app/tomcat/logs/
logging.config=file:///etc/cas/config/log4j2-management.xml
and in the
Setting cas.log.dir in management.properties does not override System
properties. At least not that I was able to figure out. So passing
-Dcas.log.dir=/some/dir/ to your startup script should sub
${sys:cas.log.dir} correctly in your log42j.xml. I also think that setting
a default in the .xml
Glad to hear that
2018-02-07 17:30 GMT-03:00 Cheltenham, Chris :
> Man,
>
>
>
> I was able to fix the ldap issue.
>
> It was a faulty ldap.conf client configuration.
>
> I have the cs.properties file set to debug
>
>
>
> I have some logging data –
>
>
>
>
Here you see debug for expration set:
ntingTicketImpl,prefix=TGT]]>
2018-02-07 17:49:37,322 DEBUG
[org.apereo.cas.config.CasCoreTicketsSchedulingConfiguration] -
2018-02-07 17:49:37,673 DEBUG
[org.apereo.cas.config.CasPersonDirectoryConfiguration] -
2018-02-07 17:49:37,679 DEBUG
I am migrating from CAS 3.6 to 5.2.2 in 3.6 overlays it had
a default-mobile-custom.css
Does somthing equivilent exist in CAS5 .2.2 to date I have not found any
thing.
--Matt
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines:
I recently switched from the Postgresql JPA ticket registry to MongoDB and
am having a strange issue. The authentication succeeds, but then it fails
to add the ticket to the mongo database, causing the process to fail and
return to the login screen.
-- cas.properties --
The title should read CAS 5.2.2 for the version
--Mike K.
On Wednesday, February 7, 2018 at 1:03:43 AM UTC-8, Mike Kromarek wrote:
>
> I recently switched from the Postgresql JPA ticket registry to MongoDB and
> am having a strange issue. The authentication succeeds, but then it fails
> to
Hello,
I'm trying to disable the cache of my cas.authn.attributeRepository in
order for the cas.authn.attributeRepository.jdbc to retrieve the attributes
each time a user logs in and want the "merger" strategy to be "MERGE".
So in my /etc/cas/config/cas.properties I've set the following lines:
Ah - you just reminded me, and I should have mentioned this last time. Try
adding this to your log4j2.xml:
That's the actual Java driver.
--Dave
--
DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY
71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300
I'm sorry I can't help you, but it would be very sweet if you could share
your effective serviceticket or ticketgrantingticket table schema from the
times when you were using PostgrelSQL as ticket registry for CAS 5...
Regards,
Uxío Prego
Madiva Soluciones
CL / SERRANO GALVACHE 56
BLOQUE
Why do you have application yml and cas properties
El miércoles, 7 de febrero de 2018, Anthony O. escribió:
> Hello,
>
> I'm trying to disable the cache of my cas.authn.attributeRepository in
> order for the cas.authn.attributeRepository.jdbc to retrieve the
> attributes each
Do you have other attribute sources
If multiple attribute repository sources are defined, they are added into a
list and their results are cached and merged.
El miércoles, 7 de febrero de 2018, Anthony O. escribió:
> Thank you for this help Manfredo but as I said, I'm using
Hi Uxio,
Sure I can share that. I had to do a few tweaks to the database. The first
is if you are using SAML, you need to change the samlobject columns from
varchar(5000) to text, because signed assertions will exceed those 5000
characters really fast.
Next you want to update the constraints
Hi Manfredo then I put the log with debug enabled:
Log:
2018-02-06 16:09:53,212 DEBUG
[org.apereo.cas.support.oauth.web.endpoints.OAuth20AccessTokenEndpointController]
(default task-5) Grant type: [password]
2018-02-06 16:09:53,230 DEBUG
I'll give that a shot and let you know what I find.
Thank you.
On Wed, Feb 7, 2018 at 5:31 AM, David Curry
wrote:
> Ah - you just reminded me, and I should have mentioned this last time. Try
> adding this to your log4j2.xml:
>
>
>
>
> That's the actual Java driver.
@Override
protected HandlerResult authenticateUsernamePasswordInternal(final
UsernamePasswordCredential credentials, final String originalPassword)
throws GeneralSecurityException, PreventedException
{
try
{
Hi Anders!
Thank you for your answer I will try with your advices and then I comment
the results.
Regards
El miércoles, 7 de febrero de 2018, 6:21:02 (UTC-3), Anders Olsen escribió:
>
> Hi Leo,
>
> When you're working with the OAuth2 module and password grants, you need
> to specify a client
I was just testing if this was caused because I was using application.yml
so I added the same values in cas.properties just to see (both are failing).
I don't have other attribute sources I think... what properties would
involve other attribute sources? The documentation is not clear about the
Thanks.
On Wed, Feb 7, 2018 at 8:52 AM, Ramakrishna G
wrote:
>
> @Override
>
> protected HandlerResult authenticateUsernamePasswordInternal(final
> UsernamePasswordCredential credentials, final String originalPassword)
>
> throws
Could you debug org.apereo.cas.configuration.CasConfigurationProperties
where all properties are loaded.
Also see from startup log which file properties are fetched
Also set debug mode
El miércoles, 7 de febrero de 2018, Anthony O. escribió:
> I was just testing if this was
Man,
First I would like to thank you for taking the time to help.
How do I set the logs in debug mode?
Do I globally change info to debug in the log4j2.xml?
===
Thank You;
Chris Cheltenham
Technology Services
The School District of Philadelphia
Work #
Does this help?
[root@devcas5 logs]# cat catalina.out | grep -i debug | grep -i ccheltenham
2018-02-07 09:50:32,421 DEBUG
[org.apereo.cas.authentication.handler.support.AbstractUsernamePasswordAuthenticationHandler]
-
2018-02-07 09:50:32,422 DEBUG
Man,
The question you asked is actually no clear to me.
How do I know the ldap support was loaded during the build.
It IS in the pom.xml but how can a verify its in there?
===
Thank You;
Chris Cheltenham
Technology Services
The School District of Philadelphia
Man,
Let me be a bit cleaere.
How do I know the ldap dependency was incorporated into the cas.war file
during after the build?
===
Thank You;
Chris Cheltenham
Technology Services
The School District of Philadelphia
Work # 215-400-5025
Cell # 215-301-6571
# Control log levels via properties
logging.level.org.apereo.cas=debug
In cas startup you can see where properties are fetched from log like this.
\_\ /_/
CAS Version: 5.2.2
CAS Commit Id: eefb26e6ea0f3f0505ea7dcfc7e11c4ebcb44b7d
CAS Build Date/Time:
Man,
I may have found the issue.
I cannot connect to LDAP servers via 636 but I can 389.
Therefore, am looking into importing the certs in the proper places.
Hopefully that is my issue.
But thanks for your help
===
Thank You;
Chris Cheltenham
Technology Services
Oh... Goodness. I was hoping the ORM software to be at last using BYTEA
instead of LO/OID.
Thank you, you are very much kind.
Uxío Prego
Madiva Soluciones
CL / SERRANO GALVACHE 56
BLOQUE ABEDUL PLANTA 4
28033 MADRID
+34 917 56 84 94
www.madiva.com
www.bbva.com
The activity of email inboxes
Mike,
The only thing that strikes me as odd in your settings is this one:
cas.ticket.registry.mongo.collectionName=cas-ticket-registry
The Mongo ticket registry uses multiple collections:
proxyGrantingTicketsCollection
proxyTicketsCollection
samlArtifactsCache
samlAttributeQueryCache
Thank you for this help Manfredo but as I said, I'm using CAS v5.2.1 &
5.2.2 and this configuration parameter does not exist in this version
: https://apereo.github.io/cas/5.2.x/installation/Configuration-Properties.html
Moreover, the cas.authn.attributeRepository.merger is the same, and my
assuming its not a time-out issue , then debug from source
El miércoles, 7 de febrero de 2018, Mike Kromarek
escribió:
> The title should read CAS 5.2.2 for the version
>
> --Mike K.
>
> On Wednesday, February 7, 2018 at 1:03:43 AM UTC-8, Mike Kromarek wrote:
>>
>> I
Yes I do.
===
Thank You;
Chris Cheltenham
Technology Services
The School District of Philadelphia
Work # 215-400-5025
Cell # 215-301-6571
From: cas-user@apereo.org [mailto:cas-user@apereo.org] On Behalf Of Man H
Sent: Tuesday, February 6, 2018 4:55 PM
To:
Hi Dave,
I actually tried those settings first (I was following your guide, but only
having a single server instead of a cluster for mongo). Unfortunately, it
fails in the same way with those settings too. I might be able to eek out
a little more information if I set
34 matches
Mail list logo