Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Corrected links that should have been relative instead of absolute.

...

[10:31:00 CDT(-0500)] <suntzu> I'm setting up my first CAS server....I have the war deployed and the web app is running. When I try to access the https://hostname/cas/services with the ID supplied in the deployerconfigcontext.xml it fails.

[10:34:05 CDT(-0500)] <suntzu> this is what I have in my deployerconfigcontext.xml...admin id have pw have been removed.

[10:34:09 CDT(-0500)] <suntzu> <sec:user-service id="userDetailsService">

[10:34:11 CDT(-0500)] <suntzu> <sec:user name="<adminIDhere>" password="********" authorities="ROLE_ADMIN" />

[10:34:12 CDT(-0500)] <suntzu> </sec:user-service>

[10:35:58 CDT(-0500)] <suntzu> is there another place I should putting this information?

[12:38:39 CDT(-0500)] <suntzu> Okay, figured out the issue with not being able to get into the hostname:8443/cas/services, but now I'm getting an unable to find valid certificate error after logging into the /cas/services portion.

[12:39:07 CDT(-0500)] <suntzu> when I go to hostname:8443/cas/login and login, I get no errors.

[13:07:02 CDT(-0500)] <suntzu> anyone seen this error when logging into the service manager?

[13:07:04 CDT(-0500)] <suntzu> sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

[13:14:48 CDT(-0500)] <suntzu> nm, i fixed.

[13:14:55 CDT(-0500)] <suntzu> I fixed it*

[16:38:42 CDT(-0500)] <suntzu> FYI, when receiving this error: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

[16:39:11 CDT(-0500)] <suntzu> this is because the key that was generated at the beginning of the BEST Practices Guide isn't put into the trusted keystore.

[16:39:33 CDT(-0500)] <suntzu> the initial key that is generated is put into the ~userhome/.keystore

[16:40:11 CDT(-0500)] <suntzu> this key needs to be imported into the /usr/java/default/jre/lib/security/cacerts keystore

[16:41:06 CDT(-0500)] <suntzu> keytool -importkeystore -srckeystore ~userhome/.keystore -destkeystore /usr/java/default/jre/lib/security/cacerts

[16:41:16 CDT(-0500)] <suntzu> that resolved my issue.