CAS logging

McLennan, Neil R n.mclennan at
Thu Aug 18 16:13:23 UTC 2022


attribute-filter.xml file is identical on both servers, so are all the files in config/attributes. The idp_audit.log is not very helpful as shown below.



-----Original Message-----
From: Kevin Foote <kevin.foote at> 
Sent: 18 August 2022 16:19
To: Shib Users <users at>
Cc: McLennan, Neil R <n.mclennan at>
Subject: Re: CAS logging

Hi Neil, 

All attribute logging will be visible in your $IDP_HOME/logs/idp-audit.log

The attribute delivery per SP (SAML or CAS) is done in the attribute-filter.xml file. That is the file that from your description of events is probably not matching up between your two IdP servers.. 


- kevin.foote

> On Aug 18, 2022, at 7:40 AM, McLennan, Neil R via users <users at> wrote:
> Is there any way of seeing in the logs what attributes are output to CAS ? 
> I have two servers which work fine with the same Attribute definitions for CAS and SAML. Server 1  has attribute_resolver.xml using a Proxy to Azure, Server 2's attribute_resolver.xml is pulling from LDAP, however if I copy server 1's attribute_resolver.xml over to server 2 , the SAML is fine but the CAS does not return attributes. I am trying to find out what is wrong.  
> Neil McLennan
> Imperial College London
> -- 
> For Consortium Member technical support, see
> To unsubscribe from this list send an email to users-unsubscribe at

More information about the users mailing list