Can you confirm these certificate and parameter values?

[webzo]

In moving from a development to production test environment, I found the following to be true to make things works-
1. The common name (CN) used to generate the certificate MUST be a DNS name of the server hosting the CAS service. It CANNOT be localhost or IP address of the server.
2. The init-params passed to the CAS filter (serverName, loginUrl, validateUrl) via the web.xml should also contain the DNS name of the server as in https://my-server:8443/cas/login or my-server:8080 (for the serverName). It CANNOT contain localhost, as in https://localhost:8443/cas/login or localhost:8080 (for serverName).

Could anyone confirm these statements? I am in a situation where CAS, Tomcat, Webapp will be deployed within a closed system of sorts with no access to anything inside the box (web.xml etc). So, I need to be set everything up beforehand (not possible since DNS name etc is unknown) or set things up programatically. At present I am considering either going through the trouble of modifying web.xml programatically or modifying the CASFilter code as was suggested previously on this forum.

Your thoughts are much appreciated!





 
____________________________________________________________________________________
Need Mail bonding?
Go to the Yahoo! Mail Q&A for great tips from Yahoo! Answers users.
http://answers.yahoo.com/dir/?link=list&sid=396546091