[cas-dev] Single sign-out in a loadbalancing environment
Roelof Jan Koekoek
roekoe at vpro.nl
Fri Jan 9 04:55:21 EST 2009
Hi,
I was looking into the single sign-out feature of the latest CAS
client. Our SSO clients are being load-balanced transparently under a
single domain. Currently the load-balancer provides sticky sessions.
Therefor we don't use session replication over client servers. In a
single sign-out scenario the SSO server has no idea which of the
client servers provided the client service to a user. Ticket
validation appears to be bound to the public outer domain of the
services. Is there a known solution to this problem, or do you have
any ideas how to get this to work?
Best Regards, Roelof Jan
More information about the cas-dev
mailing list