Hi All,
We have implemented SSO using CAS for CA Clarity Application(Note: SSO not implemented for NSA).But we are facing peculiar problem where we are unable to open NSA because NSA URL is getting redirected to SSO login URL of the Application.
We have configured in load balancer context path as " /niku* ".And For implementing CAS SSO we have modified Web.xml as follows:
<context-param>
<param-name>serverName</param-name>
<param-value>https://dnaone-sit.ad.com</param-value>
</context-param>
<filter>
<filter-name>CAS Authentication Filter</filter-name>
<filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
<init-param>
<param-name>casServerLoginUrl</param-name>
<param-value>https://dnaone-sit.ad.com/dnaonecas/login</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CAS Authentication Filter</filter-name>
<url-pattern>/app</url-pattern>
<url-pattern>/nu</url-pattern>
</filter-mapping>
<filter>
<filter-name>CAS Validation Filter</filter-name>
<filter-class>org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter</filter-class>
<init-param>
<param-name>casServerUrlPrefix</param-name>
<param-value>https://dnaone-sit.ad.com/dnaonecas/</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CAS Validation Filter</filter-name>
<url-pattern>/app</url-pattern>
<url-pattern>/nu</url-pattern>
</filter-mapping>
<filter>
<filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
<filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
<url-pattern>/app</url-pattern>
<url-pattern>/nu</url-pattern>
</filter-mapping>
<filter>
<filter-name>Custom SSO Filter</filter-name>
<filter-class>com.clarity.SSOFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>Custom SSO Filter</filter-name>
<url-pattern>/nu</url-pattern>
</filter-mapping>
In Properties.xml we made useSSO for app as "true" and we changed the entryURL for app as "https://dnaone-sit.ad.com" (//lar to server name in Web.xml)
Can any one help me in resolving this issue.SO that NSA URL can be accessed for administration purpose.
Thanks & regards
Chandra Sekhar Bommisetti