Adding Shibboleth to CAS
Michael A Grady
mgrady at unicon.net
Tue Feb 26 18:45:34 EST 2013
Yes, many organizations run Shib with CAS, and the CAS documentation presents multiple ways one can layer the Shib IdP over CAS:
https://wiki.jasig.org/display/CASUM/Shibboleth-CAS+Integration
The most full-featured approach is to use the latest option for that, where you leverage the External Authentication handler option in the Shib IdP to delegate the actual authentication event/login page to CAS. That is listed at the end of the above page, or the direct link is here:
https://github.com/Unicon/shib-cas-authenticator
Questions about information on either of the above two web pages would most appropriately be directed to the CAS Users mailing list, versus the Shib list:
https://wiki.jasig.org/display/JSG/cas-user
Of course, questions specific to the rest of configuring the Shib IdP you'd install for this are indeed subjects for this Shib Users list.
On Feb 26, 2013, at 2:59 PM, Stein, Eric wrote:
> Hi,
> My organization is currently using CAS as our SSO application, based
> off of authentication information in a database. We'd like to support a
> client who has their own SSO solution and wants to connect to our
> CAS-protected applications using SAML 2.0. We are not interested in
> moving away from CAS or our database authentication store. Is this
> something that Shibboleth can support? I know there's a plug-in for CAS.
> I just want to make sure we can leverage Shibboleth without making us
> migrate our user/password info from the database to Shibboleth.
>
> Is there a hello world walkthough I can play around with? I'll
> confess, Shibboleth looks pretty complex for our requirement.
>
> Thanks,
> Eric Stein
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
--
Michael A. Grady
Senior IAM Consultant, Unicon, Inc.
More information about the users
mailing list