general question about clearpass under CAS 4.2.x

[n99]

Hello

Documentation at https://apereo.github.io/cas/4.2.x/integration/ClearPass.html goes into detail about how encryption is used when the credential is sent to a requesting service.

I was wondering about the actual memory store of credentials on the CAS server.

Are the credentials in this store encrypted or not?

(I believe they were stored unencrypted in version 3.5.x but there was a JIRA https://issues.jasig.org/browse/CAS-914 detailing how you might encrypt)

Cheers

n99

[Misagh Moayyed]

The credentials are always encrypted, regardless of the store. The store is the ticket registry, which can also encrypt items on its own.

 

--
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To post to this group, send email to cas-...@apereo.org.
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/e5d6b6f2-1ea2-4d4e-9360-e967b59c4502%40apereo.org.
For more options, visit https://groups.google.com/a/apereo.org/d/optout.