Colin,
Could this be what your are looking for,
https://apereo.github.io/cas/6.2.x/services/Configuring-Service-AuthN-Policy.html
Ray
On Tue, 2020-10-20 at 14:24 -0400, Colin Ryan wrote:
Notice: This message was sent from outside the University of Victoria email
system. Please be cautious with links and sensitive information.
Folks,
I have 2 authentication sources. I have services that I want strictly to only
accept success via a specific source. Even if the same credential pair could
succeed in either.
I've been trying to user the "newer"? authenticationPolicy approaches as the
logs in my 6.2.3 builds were warning about deprecation of the requiredAuth
configurations.
So I have LDAP and Radius both backed by the same LDAP but for other reasons I
want a particular policy to specifically require authentication to one or the
other.
So to force Radius only to be accepted in a service definition I've tried the
below. But if for example, I fail on the Radius auth and then try again it ends
up Authenticating against LDAP1.
Missing something?
authenticationPolicy:
{
"@class":
"org.apereo.cas.services.DefaultRegisteredServiceAuthenticationPolicy",
"requiredAuthenticationHandlers" : ["java.util.TreeSet", [ "Radius" ]],
criteria": {
"@class":
"org.apereo.cas.services.AllowedAuthenticationHandlersRegisteredServiceAuthenticationPolicyCriteria"
}
}
Thanks
Colin
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | [email protected]<mailto:[email protected]>
I respectfully acknowledge that my place of work is located within the
ancestral, traditional and unceded territory of the Songhees, Esquimalt and
WSÁNEĆ Nations.
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/2cc902b81b87bb8b64c476842c72dc9451089ae2.camel%40uvic.ca.
