ForgeRock. CAS. How To Set Up Apache, Tomcat (mod_jk), SSO (CAS, mod_auth_cas. This article describes how you can set up Apache and Tomcat, linked with mod_jk.
It also explains how you set up the SSO (single sign on) solution JA-SIG CAS to protect servlets (provided by tomcat) and static content (provided by Apache). I worked with OpenSuse 10.2 and 11, Apache2, Tomcat 5.5 and 6. It should work on other distributions as well. 1. Clustering CAS - pdf. Clustering CAS - User Manual. The clustering guide describes concerns and configuration guidelines for deploying CAS in a high availability (HA) environment.
Implementing clustering introduces CAS server security concerns Icon It's easy to visualize the requirements to secure the path of sensitive information when working with a single-server installation of CAS: Protect user passwords with SSL encryptionSecure the communication between the CAS server and the credential storeAssure that the Ticket Granting Cookie is only sent from the browser to the CAS serverAssure that Proxy Tickets are only issued to an SSL-protected endpointSecure the validation of Service Tickets and Proxy Tickets with SSL encryption It is also easy to visualize how clustering CAS servers may create additional security concerns.