Redirection failed on successful CAS authentication

Scott Battaglia scott.battaglia at gmail.com
Wed Feb 21 13:14:24 EST 2007 

Can you confirm that you are adding it to the correct JVM cacerts file (if
you have multiple JVMs)?

Thanks
-Scott

On 2/21/07, k2g <kkganesan at gmail.com> wrote:
>
> Same error again after making changes in the first and last name field
>
> C:\>C:\"Program Files"\Java\jdk1.5.0_11\bin\keytool -genkey -alias tomcat
> -keyal
> g RSA -validity 365
> Enter keystore password:  changeit
> What is your first and last name?
>   [Unknown]:  IT-2208
> What is the name of your organizational unit?
>   [Unknown]:  talkerman
> What is the name of your organization?
>   [Unknown]:  talkerman
> What is the name of your City or Locality?
>   [Unknown]:  hills
> What is the name of your State or Province?
>   [Unknown]:  {A
> What is the two-letter country code for this unit?
>   [Unknown]:  US
> Is CN=IT-2208, OU=talkerman, O=talkerman, L=hills, ST={A, C=US correct?
>   [no]:  y
>
> Enter key password for <tomcat>
>         (RETURN if same as keystore password):
>
> C:\>C:\"Program Files"\Java\jdk1.5.0_11\bin\keytool -export -alias tomcat
> -file
> serv.crt
> Enter keystore password:  changeit
> Certificate stored in file <serv.crt>
>
> C:\>C:\"Program Files"\Java\jdk1.5.0_11\bin\keytool -import -file serv.crt-keys
> tore C:/"Program Files"/Java/jdk1.5.0_11/jre/lib/security/cacerts
> Enter keystore password:  changeit
> Owner: CN=IT-2208, OU=talkerman, O=talkerman, L=hills, ST={A, C=US
> Issuer: CN=IT-2208, OU=talkerman, O=talkerman, L=hills, ST={A, C=US
> Serial number: 45dc8222
> Valid from: Wed Feb 21 12:32:18 EST 2007 until: Thu Feb 21 12:32:18 EST
> 2008
> Certificate fingerprints:
>          MD5:  23:11:5E:B2:87:21:67:10:A7:2F:82:1A:A9:84:8F:67
>          SHA1: AD:75:25:E6:6A:B0:08:C2:2C:10:F1:AD:72:65:76:73:BA:E5:91:79
> Trust this certificate? [no]:  y
> Certificate was added to keystore
>
>
> --->
>
> redeployed the apps in the webapps directory of tomcat and started the
> tomcat
>
> INFO [http-8443-Processor24]
> AuthenticationManagerImpl.authenticate(88) | AuthenticationHandler:
> org.acegisecurity.adapters.cas3.CasAuthenticationHandler successfully
> authenticated the user.
> INFO [http-8443-Processor24]
> CentralAuthenticationServiceImpl.grantServiceTicket(167) | Granted
> service ticket [ST-2-YhQhZzJSd3r7dLAc5s9VdbC0lSg7K3Elg0C-20] for
> service [https://IT-2208:8443/myapp/j_acegi_cas_security_check] for
> user [admin]
> WARN [http-8443-Processor25] LoggerListener.onApplicationEvent(55) |
> Authentication event AuthenticationFailureServiceExceptionEvent:
> _cas_stateful_; details:
> org.acegisecurity.ui.WebAuthenticationDetails at 3bcc: RemoteIpAddress:
> 10.22.2.148; SessionId: E09988C8D30EAAF56028B32EE08CAC07; exception:
> sun.security.validator.ValidatorException: PKIX path building failed:
> sun.security.provider.certpath.SunCertPathBuilderException: unable to
> find valid certification path to requested target
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20070221/752771d1/attachment.html

More information about the cas mailing list