Unable to validate ProxyTicketValidator
Andrew Petro
apetro at unicon.net
Tue Jul 4 16:19:25 EDT 2006
Oscar,
This almost always ends up being a certificate trust issue. Server2's JVM
needs to trust the SSL cert used by server1. If server1 is not using an
expensive commercial inherently trusted cert (e.g., a verisign cert), then
you need to install the server1's cert's public key into the server2's JVM's
keystore.
Search this list's archives for many prior discussions of this issue and
there are also resources on the CAS website and wiki.
If it's not a certificate trust issue, I'd be happy to discuss and help
further, but please follow up with those resources and verify that that is
not the problem first.
Thanks,
Andrew
________________________________________
From: cas-bounces at tp.its.yale.edu [mailto:cas-bounces at tp.its.yale.edu] On
Behalf Of Oscar Javier Gómez Reina
Sent: Tuesday, July 04, 2006 10:15 AM
To: cas at tp.its.yale.edu
Subject: Unable to validate ProxyTicketValidator
Hi, I Installed Cas in my Tomcat server (server1) and authentication is ok.
Now, I deploy a client application in another server (server2), I added the
cas filter in web.xml and refer to server1, I open in the browser the
application and it redirect to login page an authentication with cas is ok,
however when the authentication finish and redirect back (server2) throws
me:
Error 500: Unable to validate ProxyTicketValidator
[[edu.yale.its.tp.cas.client.ProxyTicketValidator proxyList=[null]
[edu.yale.its.tp.cas.client.ServiceTicketValidator
casValidateUrl=[https://oscarg:8443/cas/proxyValidate]
ticket=[ST-4-kl1bLQ17zdmNSihUiSHHLyRUF4Eb67rIkef-20]
service=[http%3A%2F%2Fsuperwas%2Fvirtuales%2Festados%2FestadosPendientes.do]
renew=false]]]
What I must do?
Regadrs,
Oscar
oscarg at supersociedades.gov.co
More information about the cas
mailing list