Central Authentication Service (CAS)
CAS is a central logon service that enables you to access multiple applications by typing your PID and password credentials one time. Once logged into CAS, you can visit any Web application that uses CAS authentication without having to log on again. CAS is available to Web applications that use the Virginia Tech PID for authentication.
The number of Web applications requiring authentication continues to grow at Virginia Tech. CAS provides a means for these applications to remain secure while not inconveniencing you with having to log on to every service. This method also improves security by simplifying the procedures an application needs to follow in order to perform authentication. And most importantly, CAS reduces the risk of PID and password exposure by only requiring the transmission of this information once.
Benefits to Users:
- CAS gives users a single secure logon to participating Virginia Tech websites.
Benefits to Systems Administrators:
- CAS is available to any web application that uses the Virginia Tech PID for authentication.
- The purpose of CAS is to simplify the steps needed for a web application to securely access the Virginia Tech LDAP. Since it is a centrally managed service, using CAS results in fewer man- hours spent on maintentance.
- CAS improves security. User credentials are passed only once from the user's browser to CAS. This reduces the risk of PID and password exposure.
Virginia Tech services that use CAS:
Please see the CAS Wiki or contact CTU to discuss using CAS for your web application.
|
