jasig-cas IRC Logs-2011-11-03
[10:27:11 CDT(-0500)] <suntzu> good morning/afternoon
[10:31:00 CDT(-0500)] <suntzu> I'm setting up my first CAS server....I have the war deployed and the web app is running. When I try to access the https://hostname/cas/services with the ID supplied in the deployerconfigcontext.xml it fails.
[10:34:05 CDT(-0500)] <suntzu> this is what I have in my deployerconfigcontext.xml...admin id have pw have been removed.
[10:34:09 CDT(-0500)] <suntzu> <sec:user-service id="userDetailsService">
[10:34:11 CDT(-0500)] <suntzu> <sec:user name="<adminIDhere>" password="********" authorities="ROLE_ADMIN" />
[10:34:12 CDT(-0500)] <suntzu> </sec:user-service>
[10:35:58 CDT(-0500)] <suntzu> is there another place I should putting this information?
[12:38:39 CDT(-0500)] <suntzu> Okay, figured out the issue with not being able to get into the hostname:8443/cas/services, but now I'm getting an unable to find valid certificate error after logging into the /cas/services portion.
[12:39:07 CDT(-0500)] <suntzu> when I go to hostname:8443/cas/login and login, I get no errors.
[13:07:02 CDT(-0500)] <suntzu> anyone seen this error when logging into the service manager?
[13:07:04 CDT(-0500)] <suntzu> sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
[13:14:48 CDT(-0500)] <suntzu> nm, i fixed.
[13:14:55 CDT(-0500)] <suntzu> I fixed it*
[16:38:42 CDT(-0500)] <suntzu> FYI, when receiving this error: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
[16:39:11 CDT(-0500)] <suntzu> this is because the key that was generated at the beginning of the BEST Practices Guide isn't put into the trusted keystore.
[16:39:33 CDT(-0500)] <suntzu> the initial key that is generated is put into the ~userhome/.keystore
[16:40:11 CDT(-0500)] <suntzu> this key needs to be imported into the /usr/java/default/jre/lib/security/cacerts keystore
[16:41:06 CDT(-0500)] <suntzu> keytool -importkeystore -srckeystore ~userhome/.keystore -destkeystore /usr/java/default/jre/lib/security/cacerts
[16:41:16 CDT(-0500)] <suntzu> that resolved my issue.