Thanks so much for all the great information!
In particular though I just want to ask about this detail (and I'll dive
into all the others shortly as well to doublecheck everything that I had
thought I had done correctly):
On 6/25/24 10:49, Frédéric Dussurget wrote:
> Have you tried ldapsearch requests thru ssl (starttls/ldaps) from the
> command line ?
My understanding was that it should be possible to get non-ssl
connections to work from the CAS server (just in test mode to get over
this hurdle). Is this not true? Does CAS insist on encrypting that
request during transport?
We do have ldaps available (on port 636) on our LDAP server, but if my
assumption was wrong (and it really is necessary for the traffic between
the CAS server and the LDAP server to use SSL), then perhaps a
certificate issue may be preventing the connection...
thanks again,
~c
--
Bard College at Simon's Rock & Bard Academy
Director of Instructional Technology
413.528.7344
https://simons-rock.edu/~cderr/Charlie_Derr_public_key.text
cd...@simons-rock.edu they/them/theirs or he/him/his both fine