We created a CAS service registry entry for a SAML SP called: Test_SAML-1363.json and placed that file in D:\etc\cas\config\services
To override the default IDP configured in cas.properties, we added this file (no extension) Test-1363 to D:\etc\cas\saml\metadata Note that we also tried it with a .xml extension.
What we got back from the SP indicated that it received a response from the default IDP configured in CAS, and not the one we attempted to override within the service specific configuration.
Has anyone done this before and if so, what are we doing wrong?
Thanks, Jay
Notice: This message was sent from outside the University of Victoria email system. Please be cautious with links and sensitive information.
Ray – thank you for the reply!
I believe we did indeed do that, within the D:\etc\cas\saml\metadata directory lives a file called Test_SAML-1363 with no file extension.
Thanks, Jay
________________________________
Jason Rappaport (he/him)
Identity and Access Management Analyst
Office of Information Technology
Email: jaso...@princeton.edu
Office: 609-258-8464
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/f588b450ab78d25f5848786e20e6bb5d685aa747.camel%40uvic.ca.
Ray – I just reread your message, are you indicating we need a directory D:\etc\cas\saml\metadata\Test_SAML-1363 and then within that is the IDP metadata file?
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/BL0PR04MB5156E054A716FA663F69BF8ACC309%40BL0PR04MB5156.namprd04.prod.outlook.com.
I think we are making progress, now we are getting this error message
Unable to locate signing credentials
Any thoughts on how to fix this?
Please note that we abandoned this pursuit as it does not seem possible to do; have two completely different SAML IDPs on the same CAS server configured with service specific overrides. It appears that you can override some aspects of a SAML IDPs configuration but not all of them.
You received this message because you are subscribed to a topic in the Google Groups "CAS Community" group.
To unsubscribe from this topic, visit https://groups.google.com/a/apereo.org/d/topic/cas-user/D3jaHXCHGEo/unsubscribe.
To unsubscribe from this group and all its topics, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/94adbf1f-11fc-4690-bb71-fe6f97767757n%40apereo.org.