Re: [cas-user] Multiple Duo Instances

Hey Misagh, Could you point me to something about the built in feature for checking if a user is already registered for MFA/Duo? On Tuesday, February 6, 2018 at 2:14:53 PM UTC-5, Misagh Moayyed wrote: > > Brian, if I have understood things correctly I think you're doing this the > hard way: I

[cas-user] Re: CAS 4.2.7 login throttling not working

Any help?! On Tuesday, February 6, 2018 at 11:31:14 AM UTC+3:30, Meysam Shirazi wrote: > > Hello, > > I'm trying to use throttling on CAS 4.2.7 but it seems that it's not > working! I'v done that on CAS 3.5.2 and it worked fine! > my configuration(based on CAS documentaion): >

[cas-user] cas-management 5.x cas-management.log java.io.IOException: Permission denied

Hello, I'm working on the cas-management-overlay for 5.x and it doesn't seem to be honoring the settings in the log4j2-management.xml. In my management.properties I have: cas.log.dir=/u01/app/tomcat/logs/ logging.config=file:///etc/cas/config/log4j2-management.xml and in the

Re: [cas-user] cas-management 5.x cas-management.log java.io.IOException: Permission denied

Setting cas.log.dir in management.properties does not override System properties. At least not that I was able to figure out. So passing -Dcas.log.dir=/some/dir/ to your startup script should sub ${sys:cas.log.dir} correctly in your log42j.xml. I also think that setting a default in the .xml

Re: [cas-user] ldap error cas 5.2

Glad to hear that 2018-02-07 17:30 GMT-03:00 Cheltenham, Chris : > Man, > > > > I was able to fix the ldap issue. > > It was a faulty ldap.conf client configuration. > > I have the cs.properties file set to debug > > > > I have some logging data – > > > >

Re: [cas-user] attributeRepository.expireInMinutes, maximumCacheSize and merger is never taken into account

Here you see debug for expration set: ntingTicketImpl,prefix=TGT]]> 2018-02-07 17:49:37,322 DEBUG [org.apereo.cas.config.CasCoreTicketsSchedulingConfiguration] - 2018-02-07 17:49:37,673 DEBUG [org.apereo.cas.config.CasPersonDirectoryConfiguration] - 2018-02-07 17:49:37,679 DEBUG

[cas-user] CAS 3.6 default-mobile-custom.css

I am migrating from CAS 3.6 to 5.2.2 in 3.6 overlays it had a default-mobile-custom.css Does somthing equivilent exist in CAS5 .2.2 to date I have not found any thing. --Matt -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines:

[cas-user] Failed To Add TGT Ticket - MongoDB Ticket Registry CAS 45.2.

I recently switched from the Postgresql JPA ticket registry to MongoDB and am having a strange issue. The authentication succeeds, but then it fails to add the ticket to the mongo database, causing the process to fail and return to the login screen. -- cas.properties --

[cas-user] Re: Failed To Add TGT Ticket - MongoDB Ticket Registry CAS 45.2.

The title should read CAS 5.2.2 for the version --Mike K. On Wednesday, February 7, 2018 at 1:03:43 AM UTC-8, Mike Kromarek wrote: > > I recently switched from the Postgresql JPA ticket registry to MongoDB and > am having a strange issue. The authentication succeeds, but then it fails > to

[cas-user] attributeRepository.expireInMinutes, maximumCacheSize and merger is never taken into account

Hello, I'm trying to disable the cache of my cas.authn.attributeRepository in order for the cas.authn.attributeRepository.jdbc to retrieve the attributes each time a user logs in and want the "merger" strategy to be "MERGE". So in my /etc/cas/config/cas.properties I've set the following lines:

Re: [cas-user] Failed To Add TGT Ticket - MongoDB Ticket Registry CAS 45.2.

Ah - you just reminded me, and I should have mentioned this last time. Try adding this to your log4j2.xml: That's the actual Java driver. --Dave -- DAVID A. CURRY, CISSP *DIRECTOR OF INFORMATION SECURITY* INFORMATION TECHNOLOGY 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003 +1 212 229-5300

Re: [cas-user] Failed To Add TGT Ticket - MongoDB Ticket Registry CAS 45.2.

I'm sorry I can't help you, but it would be very sweet if you could share your effective serviceticket or ticketgrantingticket table schema from the times when you were using PostgrelSQL as ticket registry for CAS 5... Regards, Uxío Prego Madiva Soluciones CL / SERRANO GALVACHE 56 BLOQUE

Re: [cas-user] attributeRepository.expireInMinutes, maximumCacheSize and merger is never taken into account

Why do you have application yml and cas properties El miércoles, 7 de febrero de 2018, Anthony O. escribió: > Hello, > > I'm trying to disable the cache of my cas.authn.attributeRepository in > order for the cas.authn.attributeRepository.jdbc to retrieve the > attributes each

Re: [cas-user] attributeRepository.expireInMinutes, maximumCacheSize and merger is never taken into account

Do you have other attribute sources If multiple attribute repository sources are defined, they are added into a list and their results are cached and merged. El miércoles, 7 de febrero de 2018, Anthony O. escribió: > Thank you for this help Manfredo but as I said, I'm using

Re: [cas-user] Failed To Add TGT Ticket - MongoDB Ticket Registry CAS 45.2.

Hi Uxio, Sure I can share that. I had to do a few tweaks to the database. The first is if you are using SAML, you need to change the samlobject columns from varchar(5000) to text, because signed assertions will exceed those 5000 characters really fast. Next you want to update the constraints

Re: [cas-user] Problmes with Oauth grant type Password - CAS 5.1.4

Hi Manfredo then I put the log with debug enabled: Log: 2018-02-06 16:09:53,212 DEBUG [org.apereo.cas.support.oauth.web.endpoints.OAuth20AccessTokenEndpointController] (default task-5) Grant type: [password] 2018-02-06 16:09:53,230 DEBUG

Re: [cas-user] Failed To Add TGT Ticket - MongoDB Ticket Registry CAS 45.2.

I'll give that a shot and let you know what I find. Thank you. On Wed, Feb 7, 2018 at 5:31 AM, David Curry wrote: > Ah - you just reminded me, and I should have mentioned this last time. Try > adding this to your log4j2.xml: > > > > > That's the actual Java driver.

Re: [cas-user] Cas Custom Login Field

@Override protected HandlerResult authenticateUsernamePasswordInternal(final UsernamePasswordCredential credentials, final String originalPassword) throws GeneralSecurityException, PreventedException { try {

[cas-user] Re: Problmes with Oauth grant type Password - CAS 5.1.4

Hi Anders! Thank you for your answer I will try with your advices and then I comment the results. Regards El miércoles, 7 de febrero de 2018, 6:21:02 (UTC-3), Anders Olsen escribió: > > Hi Leo, > > When you're working with the OAuth2 module and password grants, you need > to specify a client

Re: [cas-user] attributeRepository.expireInMinutes, maximumCacheSize and merger is never taken into account

I was just testing if this was caused because I was using application.yml so I added the same values in cas.properties just to see (both are failing). I don't have other attribute sources I think... what properties would involve other attribute sources? The documentation is not clear about the

Re: [cas-user] Cas Custom Login Field

Thanks. On Wed, Feb 7, 2018 at 8:52 AM, Ramakrishna G wrote: > > @Override > > protected HandlerResult authenticateUsernamePasswordInternal(final > UsernamePasswordCredential credentials, final String originalPassword) > > throws

Re: [cas-user] attributeRepository.expireInMinutes, maximumCacheSize and merger is never taken into account

Could you debug org.apereo.cas.configuration.CasConfigurationProperties where all properties are loaded. Also see from startup log which file properties are fetched Also set debug mode El miércoles, 7 de febrero de 2018, Anthony O. escribió: > I was just testing if this was

RE: [cas-user] ldap error cas 5.2

Man, First I would like to thank you for taking the time to help. How do I set the logs in debug mode? Do I globally change info to debug in the log4j2.xml? === Thank You; Chris Cheltenham Technology Services The School District of Philadelphia Work #

RE: [cas-user] ldap error cas 5.2

Does this help? [root@devcas5 logs]# cat catalina.out | grep -i debug | grep -i ccheltenham 2018-02-07 09:50:32,421 DEBUG [org.apereo.cas.authentication.handler.support.AbstractUsernamePasswordAuthenticationHandler] - 2018-02-07 09:50:32,422 DEBUG

RE: [cas-user] ldap error cas 5.2

Man, The question you asked is actually no clear to me. How do I know the ldap support was loaded during the build. It IS in the pom.xml but how can a verify its in there? === Thank You; Chris Cheltenham Technology Services The School District of Philadelphia

RE: [cas-user] ldap error cas 5.2

Man, Let me be a bit cleaere. How do I know the ldap dependency was incorporated into the cas.war file during after the build? === Thank You; Chris Cheltenham Technology Services The School District of Philadelphia Work # 215-400-5025 Cell # 215-301-6571

Re: [cas-user] ldap error cas 5.2

# Control log levels via properties logging.level.org.apereo.cas=debug In cas startup you can see where properties are fetched from log like this. \_\ /_/ CAS Version: 5.2.2 CAS Commit Id: eefb26e6ea0f3f0505ea7dcfc7e11c4ebcb44b7d CAS Build Date/Time:

RE: [cas-user] ldap error cas 5.2

Man, I may have found the issue. I cannot connect to LDAP servers via 636 but I can 389. Therefore, am looking into importing the certs in the proper places. Hopefully that is my issue. But thanks for your help === Thank You; Chris Cheltenham Technology Services

Re: [cas-user] Failed To Add TGT Ticket - MongoDB Ticket Registry CAS 45.2.

Oh... Goodness. I was hoping the ORM software to be at last using BYTEA instead of LO/OID. Thank you, you are very much kind. Uxío Prego Madiva Soluciones CL / SERRANO GALVACHE 56 BLOQUE ABEDUL PLANTA 4 28033 MADRID +34 917 56 84 94 www.madiva.com www.bbva.com The activity of email inboxes

Re: [cas-user] Failed To Add TGT Ticket - MongoDB Ticket Registry CAS 45.2.

Mike, The only thing that strikes me as odd in your settings is this one: cas.ticket.registry.mongo.collectionName=cas-ticket-registry The Mongo ticket registry uses multiple collections: proxyGrantingTicketsCollection proxyTicketsCollection samlArtifactsCache samlAttributeQueryCache

Re: [cas-user] attributeRepository.expireInMinutes, maximumCacheSize and merger is never taken into account

Thank you for this help Manfredo but as I said, I'm using CAS v5.2.1 & 5.2.2 and this configuration parameter does not exist in this version : https://apereo.github.io/cas/5.2.x/installation/Configuration-Properties.html Moreover, the cas.authn.attributeRepository.merger is the same, and my

Re: [cas-user] Failed To Add TGT Ticket - MongoDB Ticket Registry CAS 45.2.

assuming its not a time-out issue , then debug from source El miércoles, 7 de febrero de 2018, Mike Kromarek escribió: > The title should read CAS 5.2.2 for the version > > --Mike K. > > On Wednesday, February 7, 2018 at 1:03:43 AM UTC-8, Mike Kromarek wrote: >> >> I

RE: [cas-user] ldap error cas 5.2

Yes I do. === Thank You; Chris Cheltenham Technology Services The School District of Philadelphia Work # 215-400-5025 Cell # 215-301-6571 From: cas-user@apereo.org [mailto:cas-user@apereo.org] On Behalf Of Man H Sent: Tuesday, February 6, 2018 4:55 PM To:

Re: [cas-user] Failed To Add TGT Ticket - MongoDB Ticket Registry CAS 45.2.

Hi Dave, I actually tried those settings first (I was following your guide, but only having a single server instead of a cluster for mongo). Unfortunately, it fails in the same way with those settings too. I might be able to eek out a little more information if I set