Sei sulla pagina 1di 4

w w w. j a s i g.

o rg / c a s

Central Authentication Service (CAS)


Simple, Flexible, Extensible Open Source Single Sign-On for the Enterprise
Single sign-on provides user convenience, as it protects against both credential proliferation and password exposure, and centralizes the institutional log-in experience. The Jasig Central Authentication Service (CAS) has gained widespread adoption within higher education as a simple, flexible, and extensible platform for single sign-on across the enterprise. CAS has been deployed at universities, non-profits, nongovernmental organizations, governments, small businesses, and large corporations around the world. CAS has even been used by popular multiplayer online games. Originally developed at Yale University, CAS is now managed by Jasig and its development is led by higher education institutions. What is Single Sign-On? Single sign-on allows participating applications to share a single sign-on session. Users complete a centrally managed authentication experience once per browser session and while authenticated to CAS can log into multiple applications without again being prompted for credentials and without those applications ever seeing the user's password. Using a single sign-on server reduces security risks by reducing the exposure of the user's password to applications.

CAS is a practical yet secure single sign-on infrastructure with accommodating features, support for numerous platforms, and an active community of practice.

Features
CAS supports the CAS1, CAS2, and SAML protocols allowing for simple single sign-on as well as n-tier delegated authentication. Delegated authentication allows an application, such as a portal, to access selected additional resources on an end user's behalf without exposing a password. Out of the box, CAS supports authenticating users via passwords validated against LDAP (including Active Directory), databases, or RADIUS. CAS also supports authenticating users without passwords, including via SPNEGO/NTLM, X.509 certificates, and the application container. CAS has been designed from the ground up to be an extensible platform with welldesigned plugin APIs based on community use cases. CAS is built using "de facto" standard technology including the Spring Framework, Spring Web Flow for the login flow, Maven2, Jasig Person Directory, JSPs, and more, offering a familiar tool set to Java developers. For the enterprise-minded, CAS includes multiple options for high-availability clustered deployments, optionally relying upon database-backed and distributed in-memory cache solutions for sharing state across CAS server instances. CAS supports audit and even restriction of who is accessing which service.

Supported Platforms
CAS is designed to run on any Java 1.5 or higher virtual machine and in any container that supports Servlet 2.4 or higher specification. Because it is written purely in Java and does not rely on the features of specific application containers, it is portable across many server environments. It has been tested on Platforms with Available the Sun Java 1.5 CAS Client Software and 1.6 Java VirLibraries for User tual machines Authentication and in the Toml Apache HTTP Server cat, Jetty, and l Drupal JBoss containers. Official CAS support is also included in SpringSource's Spring Security platform as well as Jasig's uPortal product. The Java client includes modules to ease integration with Atlassian's Confluence and JIRA. The community has also contributed their expertise in "CASifying" a wide range of applications including Joomla, OpenCms, FishEye & Crucible, Roller, Liferay, Wordpress, Zimbra, Banner, and Peoplesoft.

IIS Java l PAM l PHP l Perl l PL/SQL l Ruby l .NET


l l

Ease of Use and Security for Today's Enterprise

Applications and Frameworks Supporting CAS Out of the Box:

Community Support
One of the best aspects of the CAS project is the community support surrounding it. CAS currently offers an active, open, publicly archived email list for questions, discussion of CAS, and community support. (Development of CAS is also discussed in the open with a public archive on the CAS developers' email list). CAS has a publicly available issue tracker where bug reports and feature requests are accepted. CAS development operates under the guidance of a project steering committee comprised of developers, Jasig board members, and stakeholders.

Commercial Support
Jasig administers a Solutions Provider program for adopters who require commercial support and assistance with CAS. To view vendors who are approved Solution Providers for CAS, visit www.jasig.org/jasig-support/solutionsproviders

Alfresco l Confluence l DokuWiki l Drupal l Google Apps l JIRA l Joomla! l Liferay l MediaWiki l Moodle l OpenCMS l PeopleAdmin l Roller l Sakai Spring Security l Twiki l uPortal l Wordpress l Zimbra
l

How Do I Get Started?


To learn more about the Jasig CAS single sign-on authentication service, visit the Jasig website at www.jasig.org/cas and become active in the community by joining email lists and attending Jasig events.

Open Standards, Open Community, Constant Development

Roadmap
CAS is an ever-evolving project. Currently, CAS3 is a very stable and mature product, receiving regular maintenance and new feature updates from its core developers with contributions from the community of CAS adopters. Objectives for future CAS releases include SAML2 support, federation support, a reworked architecture, an enhanced service management tool, better clustering support, and an enhanced user log in experience.

What is Jasig?
Jasig is a non-profit consortium of educational institutions and commercial affiliates that sponsors open source software projects for higher education. Jasig organizes conferences in support of open source software planning, design, development, and implementation. Jasig currently sponsors the uPortal, Central Authentication Service (CAS), and Bedework projects, and is currently incubating several other projects and various portlets. Find out more about the Jasig community: http://www.jasig.org/ http://www.jasig.org/cas

Copyright 2010, Jasig. Some rights reserved. This work is licensed under a Creative Commons Attribution-Noncommercial-Share Alike 3.0 United States License. To view a copy of this license, visit: http://creativecommons.org/licenses/by-nc-sa/3.0/us/

Potrebbero piacerti anche