Integrating ADFS
80 views
Skip to first unread message
Zach Tackett
Sep 18, 2018, 8:36:04 AM9/18/18
to CAS Community
I am trying to integrate ADFS into the CAS server instance I have setup on a testing server.
My cas.properties file is as follows:
######General######
cas.server.name: https://itiscas.corp.muitis.com
cas.server.prefix: ${cas.server.name}/cas
logging.config: file:/etc/cas/config/log4j2.xml
cas.serviceRegistry.config.location=file:/etc/cas/config/services
server.port=9443
#server.ssl.ciphers=TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_3DES_EDE_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_RSA_WITH$
server.ssl.clientAuth=want
server.ssl.enabled=true
log4j.config.location=/home/entapps/cas-overlay-template/etc/cas/config/log4j.xml
cas.server.name: https://itiscas.corp.muitis.com
cas.server.prefix: ${cas.server.name}/cas
logging.config: file:/etc/cas/config/log4j2.xml
cas.serviceRegistry.config.location=file:/etc/cas/config/services
server.port=9443
#server.ssl.ciphers=TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_3DES_EDE_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_RSA_WITH$
server.ssl.clientAuth=want
server.ssl.enabled=true
log4j.config.location=/home/entapps/cas-overlay-template/etc/cas/config/log4j.xml
######Tickets######
cas.tgc.path=/
cas.tgc.domain: itiscas.corp.muitis.com
#cas.tgc.domain=gateway.marshall.edu
cas.tgc.name=CASTKT
cas.ticket.st.numberOfUses=15
cas.ticket.st.timeToKillInSeconds=3600
######Attribute Repository######
cas.authn.attributeRepository.expireInMinutes=1
cas.authn.attributeRepository.merger=REPLACE
######Security######
cas.adminPagesSecurity.ip=10\.110\.51\.150
cas.authn.accept.users=
cas.clearpass.cacheCredential=true
######Keys######
cas.tgc.signingKey=EUTW-3496tMPLWwMjZmfj1rso-TNIH6srDHP7dDgh5GiBM-ferb2PfXb3GvX-_Bx5MfxK9XQyTkivyQNlhcPKQ
cas.tgc.encryptionKey=2XoGRRZxJfpIjESMYDCIxH032Ul-9AJC7T0QMQ7e7Ls
cas.webflow.signing.key=gOIIahQ148nu2gexHoFFZvkHfvkZ74O6sWt6sXFYDIPZHD-33KGGoFcLNJhrGRwqbexkaLh28QXqr-QnWJh2Nw
cas.webflow.encryption.key=UkXlfFY8hW7aLcHB7BMl5w
######ADFS######
cas.authn.wsfed.identityProviderUrl=https://adfs.muitis.com/adfs/ls
cas.authn.wsfed.identityProviderIdentifier=http://adfs.multis.com/adfs/services/trust
cas.authn.wsfed.relyingPartyIdentifier=urn:itiscas.corp.muitis.com
cas.authn.wsfed.attributesType=WSFED
cas.authn.wsfed.signingCertificateResources=file:/etc/cas/config/adfs.cer
cas.authn.wsfed.tolerance=1000000
#cas.authn.wsfed.tolerance=10000
cas.authn.wsfed.identityAttribute=windowsaccountname
cas.authn.wsfed.attributeResolverEnabled=true
cas.authn.wsfed.autoRedirect=true
cas.authn.wsfed.principal.principalAttribute=windowsaccountname
# Private/Public keypair used to decrypt assertions, if any.
cas.authn.wsfed.encryptionPrivateKey=file:/etc/cas/muentappssso.key
cas.authn.wsfed.encryptionCertificate=file:/etc/cas/muentappssso.crt
cas.authn.wsfed.encryptionPrivateKeyPassword=NONE
cas.authn.wsfed.encryptionCertificate=file:/etc/cas/muentappssso.crt
cas.authn.wsfed.encryptionPrivateKeyPassword=NONE
I am trying to set this up so that when someone hits the cas login page, they get redirected to our SSo page. Am I missing something?
Elijah W. Gagne
Sep 18, 2018, 10:06:18 PM9/18/18
to CAS Community
In case it matters, when you select the blacked out keys, it reveals their values.
Regards,
EWG
Reply all
Reply to author
Forward
0 new messages