Hi Conan, >> ourCAShost.domain: Name or service not known Can we make sure that the hostname you used in your CAS script config is reachable from your Gluu Server?

I added my CAS servers hostname to the hosts file in my Gluu server and can now ping it from Gluu, new error ERROR [org.xdi.oxauth.service.net.HttpService] Failed to execute get request java.net.NoRouteToHostException: No route to host also this error is still appearing ERROR [org.xdi.oxauth.service.external.ExternalAuthenticationService] Traceback (most recent call last): File "<iostream>", line 139, in authenticate AttributeError: 'NoneType' object has no attribute 'closeConnection'

I think.. still there is connectivity issue between your Gluu Server and CAS server.

Is it possible to add RADIUS configuration to Gluu's built in CAS service?

2016-08-05 09:54:42,313 INFO [org.xdi.service.PythonService] (ajp-bio-127.0.0.1-8009-exec-24) CAS2. Rest API authenticate isValidAuthenticationMethod 2016-08-05 09:54:42,313 INFO [org.xdi.service.PythonService] (ajp-bio-127.0.0.1-8009-exec-24) CAS2. Prepare for step 1 2016-08-05 09:54:42,314 INFO [org.xdi.service.PythonService] (ajp-bio-127.0.0.1-8009-exec-24) CAS2. Prepare for step 1. cas_service_request_uri: https://ourcasserver.domain/login/login?service=https%3A%2F%2Faourgluuserver.domain%2Foxauth%2Fpostlogin 2016-08-05 09:54:50,877 INFO [org.xdi.service.PythonService] (ajp-bio-127.0.0.1-8009-exec-23) CAS2. Authenticate for step 1 2016-08-05 09:54:50,877 INFO [org.xdi.service.PythonService] (ajp-bio-127.0.0.1-8009-exec-23) CAS2. Authenticate for step 1. ticket: ST-10-p59Lc1pXme5gijMz3yeJ-ourcasserver.domain 2016-08-05 09:54:50,877 INFO [org.xdi.service.PythonService] (ajp-bio-127.0.0.1-8009-exec-23) CAS2. Authenticate for step 1. cas_service_request_uri: https://ourcasserver.domain/login/serviceValidate?ticket=ST-10-p59Lc1pXme5gijMz3yeJ-ourcasserver.domain&service=https%3A%2F%2Fourgluuserver.domain%2Foxauth%2Fpostlogin It looks like it is not making it past the validation step can anyone give me some guidance on how to set up external CAS server

>> Is it possible to add RADIUS configuration to Gluu's built in CAS service? Yes. >> It looks like it is not making it past the validation step Can you please check for any ERROR in log?

Might try that way instead, only problem is I can access CAS at mygluuserver.domain/cas but when I use this as an authentication method it reloads in a constant loop.. Could this be due to a lack of memory at setup? (I used 4096 when setting up) 2016-08-05 10:16:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Reloading registered services. 2016-08-05 10:16:15,246 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Loaded 1 services. 2016-08-05 10:18:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Reloading registered services. 2016-08-05 10:18:15,246 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Loaded 1 services. 2016-08-05 10:20:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Reloading registered services. 2016-08-05 10:20:15,246 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Loaded 1 services. 2016-08-05 10:22:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Reloading registered services. 2016-08-05 10:22:15,246 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Loaded 1 services. 2016-08-05 10:24:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Reloading registered services. 2016-08-05 10:24:15,246 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Loaded 1 services. 2016-08-05 10:26:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Reloading registered services. 2016-08-05 10:26:15,246 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Loaded 1 services. 2016-08-05 10:28:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Reloading registered services. 2016-08-05 10:28:15,246 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Loaded 1 services. 2016-08-05 10:30:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Reloading registered services. 2016-08-05 10:30:15,246 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Loaded 1 services. 2016-08-05 10:32:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Reloading registered services. 2016-08-05 10:32:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Loaded 1 services. 2016-08-05 10:34:15,245 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Reloading registered services. 2016-08-05 10:34:15,246 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] Loaded 1 services. No errors in oxauth_scripts.log, only errors in oxauth.log are the one previously mentioned yet connectivity to cas server seems fine from gluu (can ping and curl cas from gluu)

>> Might try that way instead, only problem is I can access CAS at mygluuserver.domain/cas but when I use this as an authentication method it redirects and doesn't load.. Could this be due to a lack of memory at setup? (I used 4096 when setting up) 4096 is fine for your small setup. You won't get the GUI of CAS; you need to configure CAS configuration files from /opt/tomcat/webapps/cas/ location. >> No errors in oxauth_scripts.log, only errors in oxauth.log are the one previously mentioned yet connectivity to cas server seems fine from gluu (can ping and curl cas from gluu) How about from CAS to Gluu? I know there is something in CAS where you need to enroll your Gluu Server login endpoint. Also check network connectivity from CAS to Gluu Server.

Thanks, I'll look into that if I can't get this external one working.. I have had a look into it added some proxy settings I forgot about and can ping/curl from Gluu to CAS and vice versa so it seems all connectivity is fine? Yes you are correct I have added a service in CAS pointing to Gluu so that works fine, getting an error in oxauth.log saying Connection Refused?

fixed, needed to add DNS settings Thanks