[cas-dev] Fwd: X509 Authentication + revoked certificates
Pavlos Drandakis
pdrados at gmail.com
Wed May 21 07:41:05 EDT 2008
Hello all,
any comments?
Thanks
---------- Forwarded message ----------
From: Pavlos Drandakis <pdrados at gmail.com>
Date: Thu, May 8, 2008 at 6:10 PM
Subject: X509 Authentication + revoked certificates
To: cas-dev at tp.its.yale.edu
Hello all,
>From what I understand, a certificate is treated as valid if current time
(when checking) is between certificate's creation and expiration time. So if
a revoked certificate has not expired yet, is considered valid and access is
granted, when using X509 authentication. Is there any way to prevent users
from logging into CAS when presenting revoked certificates?
Thanks,
Pavlos
(Server Configuration: CAS 3.2.1, Tomcat 6.0.14 with APR support)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas-dev/attachments/20080521/7cb0833b/attachment.html
More information about the cas-dev
mailing list