Esup-portail PAM module?
Vincent MATHIEU
Vincent.Mathieu at univ-nancy2.fr
Sun Mar 20 15:59:57 EST 2005
Freddy,
esup-portail cas_pam module is used intensively bye several french
universities (more of 10), without problem.
The majority of these use Red Hat .
Can you express your problem ?
Is castest utility working correctly ?
Freddy Lopez a écrit :
> Vincent,
>
> Have you ever experienced any problems with respect to saslauthd
> crashing (segmentation faults). We are seeing this using Red Hat and
> Cyrus IMAP 2.2.6 and it segment faults every now and then with a small
> load of users. We are using your cas_pam module.
>
> Thanks,
> -Freddy
>
> Vincent MATHIEU wrote:
>
>> Oups!!
>>
>> I made a mistake.
>> The documentation is here :
>> http://esup-portail.org/consortium/espace/SSO_1B/tech/cas/cas_pam.html
>>
>> Vincent
>>
>> Vincent MATHIEU a écrit :
>>
>>> Amos,
>>>
>>> I"m not very good in English language.
>>>
>>> esup-portail pam module give these capabilities :
>>>
>>> - improvement of debugging
>>> - certificate management : only the highter Certificate of
>>> Certificate Authority is necessary
>>> - CAS parameters are wrote in a configuration file.
>>> for example :
>>> pam file :
>>> auth sufficient /lib/security/pam_cas.so -simap://imap.univ.fr
>>> -f/etc/pam_cas.conf
>>>
>>> and /etc/pam_cas.conf :
>>> # sample pam_cas config
>>>
>>> # host from CAS server. mandatory
>>> host auth.univ.fr
>>>
>>> # port from CAS server. Default to 80 or 443, depends from ssl
>>> instruction
>>> port 443
>>>
>>> # uri to validate ticket. Default to /proxyValidate
>>> uriValidate /proxyValidate
>>>
>>> # https or no. values on or off. Default to on.
>>> ssl on
>>>
>>> # debug (on) or no (off). debug in syslog, level LOG_DEBUG. Default
>>> to off
>>> debug off
>>>
>>> # proxy or proxies who deliver Proxy Ticket.
>>> # If no proxy, pam_cas doesn't control it
>>> # It may be several proxy instructions
>>> proxy https://etumel.univ-nancy2.fr/cas/casProxy.php
>>> proxy https://ent1.univ-nancy2.fr/CasProxyServlet
>>> proxy https://ent2.univ-nancy2.fr/CasProxyServlet
>>> proxy https://ent3.univ-nancy2.fr/CasProxyServlet
>>> proxy https://esupdev1.univ-nancy2.fr/julien/CasProxyServlet
>>>
>>> # trusted_ca. mandatory if ssl on.
>>> # It a file in pem format. It can contents several certificates
>>> # If the CAS server certificate is auto-signed, the file must
>>> content the certificate
>>> # If the certificate is trusted by an Certificate Autority, The file
>>> must content
>>> # certificate from high level CA
>>> trusted_ca /Cert/ac-racine.pem
>>>
>>>
>>> A documentation is available here :
>>> http://esup-portail.org/consortium/espace/SSO_1B/tech/cas/pam_cas.conf
>>>
>>> but, in french ... Sorry
>>>
>>> Vincent
>>>
>>> Amos a écrit :
>>>
>>>> I just noticed:
>>>>
>>>> http://jasigch.princeton.edu:9000/display/CAS/PAM%20Module
>>>>
>>>> Any hint as to how the Esup-portail module is enhanced?
>>>>
>>>> Amos
>>>>
>>>> _______________________________________________
>>>> Yale CAS mailing list
>>>> cas at tp.its.yale.edu
>>>> http://tp.its.yale.edu/mailman/listinfo/cas
>>>>
>>>
>> _______________________________________________
>> Yale CAS mailing list
>> cas at tp.its.yale.edu
>> http://tp.its.yale.edu/mailman/listinfo/cas
>>
>
> ====
> This message and any attachments are confidential. Unauthorized use
> or disclosure of this message is strictly prohibited, and this message
> must be destroyed immediately if received by an unauthorized recipient.
> ====
>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
--
Vincent MATHIEU
Université Nancy 2 - CRI
Equipe système et réseaux
tel : 03 83 39 64 06
coordonnées : http://www.univ-nancy2.fr/ANNUAIRE/PERS/detail_pres.php?uid=vmathieu
More information about the cas
mailing list