certificates

[Cheltenham, Chris]

Hello Everyone,

Are we to create a certificate XX.der configured in cas.properties separate from the tomcat or jetty kestore?

===========================

Thank You;

Chris Cheltenham
Technology Services
The School District of Philadelphia

Work # 215-400-5025
Cell # 215-301-6571

[Matthew Uribe]

It's my understanding that these settings have to do with the embedded Tomcat container:

# By default and if you remove this setting, CAS runs on port 8080

server.port=8443

# To disable SSL configuration, comment out the following settings or set to blank values.

server.ssl.keyStore=file:/etc/cas/thekeystore

server.ssl.keyStorePassword=changeit

server.ssl.keyPassword=changeit

# server.ssl.ciphers=

# server.ssl.clientAuth=

# server.ssl.enabled=

# server.ssl.keyAlias=

# server.ssl.keyStoreProvider=

# server.ssl.keyStoreType=

# server.ssl.protocol=

# server.ssl.trustStore=

# server.ssl.trustStorePassword=

# server.ssl.trustStoreProvider=

# server.ssl.trustStoreType=

server.maxHttpHeaderSize=2097152

server.useForwardHeaders=true

server.connectionTimeout=20000

If you're running CAS in a standalone container, such as Tomcat, you can omit these properties from your cas.properties file. That's been my experience anyway.