Versions Compared

Old Version 32

changes.mady.by.user Amit Poddar

Saved on

compared with

New Version 33

changes.mady.by.user Amit Poddar

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents

...

  • Browser is redirected to the CAS login page for authentication. This step would not be impacted, since all popular browsers already support TLS 1.2+.

  • On successful authentication, the server makes a call back to the CAS for validating the ticket. This could be impacted with SSL handshake errors if the application platform does not support, or is not configured to support TLS 1.2+

Please note that this change will only impact applications that authenticate against CAS directly. The applications that integrate with Shibboleth over SAML will not be impacted. The IAM team will make sure that Shibboleth integration with CAS keeps working after this change.

How can I make sure that my application works after this change?

...

Many languages (Ruby, Python, Node JS, PHP etc) has have wrappers allowing the use of OpenSSL as the underlying SSL library. After validating that the underlying OpenSSL library supports TLS 1.2, the developers will need to check into language specific TLS 1.2 considerations.

...