READ https://groups.google.com/a/apereo.org/d/msgid/cas-user/ bfe6c835-bf1e-4f24-b507-025d7c0e3172%40apereo.org?utm_ medium=email&utm_source=footer
and AFTER that share your conclusions! 2018-03-06 16:29 GMT-03:00 Ed R <[email protected]>: > Here is my entire CAS configuration. This does not reflect the real > deployment but is what I used for testing. > > cas.server.name: https://cas.example.org:8443 > cas.server.prefix: https://cas.example.org:8443/cas > > ## > # CAS Server Context Configuration > # > server.context-path=/cas > server.port=444 > > server.ssl.key-store=file:C:/tomcat/conf/keystore.jks > server.ssl.key-store-password=REMOVED > server.ssl.key-password=REMOVED > server.tomcat.accesslog.enabled=false > management.context-path=/status > > ## > # CAS Log4j Configuration > # > logging.config=file:C:/etc/cas/config/log4j2.xml > logging.level.org.apereo.cas=ERROR > cas.log.level=WARN > server.context-parameters.isLog4jAutoInitializationDisabled=true > > #Disable default casuser > cas.authn.accept.users= > > cas.authn.ldap[0].type=AUTHENTICATED > cas.authn.ldap[0].ldapUrl=ldaps://REMOVED > cas.authn.ldap[0].baseDn=OU=TAP,DC=tap,DC=test > cas.authn.ldap[0].userFilter=sAMAccountName={user} > cas.authn.ldap[0].usePasswordPolicy=true > cas.authn.ldap[0].bindDn=CN=ESI7,OU=Service,OU=Users,OU=TAP,DC=tap,DC=test > cas.authn.ldap[0].bindCredential=REMOVED > cas.authn.ldap[0].allowMultiplePrincipalAttributeValues=true > cas.authn.ldap[0].principalAttributeList=sn,cn: > commonName,givenName,memberOf > cas.authn.ldap[0].trustCertificates=file:C:/etc/cas/config/ldap.cer > > cas.adminPagesSecurity.ip=0\.0\.0\.0 > cas.adminPagesSecurity.loginUrl=https://REMOVED:444/cas/login > cas.adminPagesSecurity.service=https://REMOVED:444/cas/status > cas.adminPagesSecurity.users=file:C:/etc/cas/config/adminusers.properties > cas.adminPagesSecurity.adminRoles=ROLE_ADMIN > cas.adminPagesSecurity.actuatorEndpointsEnabled=true > cas.serviceRegistry.config.location=file:C:/etc/cas/config > cas.logout.followServiceRedirects=true > > # Sessions are terminated if no new tickets are requested in one minute > cas.ticket.tgt.timeToKillInSeconds=60 > > # Sessions can last a full week if used continuously > cas.ticket.tgt.maxTimeToLiveInSeconds=604800 > > # Service tickets can only be used once > cas.ticket.st.numberOfUses=1 > > # Service tickets expire after five seconds if not used > cas.ticket.st.timeToKillInSeconds=5 > > > > -- > - Website: https://apereo.github.io/cas > - Gitter Chatroom: https://gitter.im/apereo/cas > - List Guidelines: https://goo.gl/1VRrw7 > - Contributions: https://goo.gl/mh7qDG > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit https://groups.google.com/a/ > apereo.org/d/msgid/cas-user/e767e2bd-aa90-45a8-af33- > 9d1b3b0ee3cd%40apereo.org > <https://groups.google.com/a/apereo.org/d/msgid/cas-user/e767e2bd-aa90-45a8-af33-9d1b3b0ee3cd%40apereo.org?utm_medium=email&utm_source=footer> > . > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMY5micKEYXOrLAwag%3D2hc8pLg0FT8arc2Nrn5QD_EEgz%2B_ysw%40mail.gmail.com.
