https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38709#M20557 <HTML><HEAD></HEAD><BODY><SPAN>Anyone gotten Alfresco working with CAS in any form?</SPAN></BODY></HTML> Thu, 13 Jul 2006 20:14:46 GMT kjordan2001 2006-07-13T20:14:46Z https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38708#M20556 I'm setting up a Single Sign-on system for my company and we need a content management system that can easily be integrated with our CAS system which in turn may authenticate against Kerberos or LDAP (unknown which we will use, but we have both installed but not fully configured yet for all our user Wed, 12 Jul 2006 14:57:45 GMT https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38708#M20556 kjordan2001 2006-07-12T14:57:45Z https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38709#M20557 <HTML><HEAD></HEAD><BODY><SPAN>Anyone gotten Alfresco working with CAS in any form?</SPAN></BODY></HTML> Thu, 13 Jul 2006 20:14:46 GMT https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38709#M20557 kjordan2001 2006-07-13T20:14:46Z https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38710#M20558 <HTML><HEAD></HEAD><BODY><SPAN>Hi</SPAN><BR /><BR /><SPAN>I do not recall anyone trying this.</SPAN><BR /><BR /><SPAN>Upgrading acegi to 1.0&nbsp; is on the to do list.</SPAN><BR /><BR /><SPAN>It looks like you could authenticate direct with JAAS &amp; Kerberos, or LDAP.</SPAN><BR /><BR /><BR /><SPAN>Alternatively, you should be able to configure authentication to use the acegi CAS support. In a similar way to how we use the acegi DAO stuff.</SPAN><BR /><SPAN>Take a look at authentication-services-context.xml</SPAN><BR /><BR /><SPAN>Regards</SPAN><BR /><BR /><SPAN>Andy</SPAN></BODY></HTML> Fri, 14 Jul 2006 10:30:57 GMT https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38710#M20558 andy 2006-07-14T10:30:57Z https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38711#M20559 <HTML><HEAD></HEAD><BODY><BLOCKQUOTE class="jive-quote">Hi<BR /><BR />I do not recall anyone trying this.<BR /><BR />Upgrading acegi to 1.0&nbsp; is on the to do list.<BR /><BR />It looks like you could authenticate direct with JAAS &amp; Kerberos, or LDAP.<BR /><BR /><BR />Alternatively, you should be able to configure authentication to use the acegi CAS support. In a similar way to how we use the acegi DAO stuff.<BR />Take a look at authentication-services-context.xml<BR /><BR />Regards<BR /><BR />Andy</BLOCKQUOTE><SPAN>I plan on setting it up like in </SPAN><A href="http://www.acegisecurity.org/docbook/acegi.html#cas-client" rel="nofollow noopener noreferrer">this HOWTO</A><SPAN>.&nbsp; Will this be compatible with how Alfresco does stuff?&nbsp; And I suppose my most important concern is getting users who have been authenticated but haven't logged in before added to the user list or somehow syncing with our LDAP server since that will contain all the users as well (since we may have a hundred or more users and we don't want to add them manually).</SPAN></BODY></HTML> Fri, 14 Jul 2006 16:12:22 GMT https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38711#M20559 kjordan2001 2006-07-14T16:12:22Z https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38712#M20560 <HTML><HEAD></HEAD><BODY><SPAN>Anyone know if hacking it like that will work?</SPAN></BODY></HTML> Mon, 17 Jul 2006 17:09:41 GMT https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38712#M20560 kjordan2001 2006-07-17T17:09:41Z https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38713#M20561 <HTML><HEAD></HEAD><BODY><SPAN>Hi</SPAN><BR /><BR /><SPAN>You can schedule groups and users to be pulled from an LDAP user so that alfrecso is in sync with your LDAP server. You could authenticate direct to LDAP or via CAS. I see no reason why you should not be able to validate a user+password using CAS and the acegi based alfresco authenticator.</SPAN><BR /><BR /><SPAN>There is no point in having CAS unless it gives you single sign on.</SPAN><BR /><SPAN>What clients understand it and how would web calls etc pull out the credentials? You would have to write something here using the NTLM single sign on filter code as an example.</SPAN><BR /><BR /><SPAN>You may also want to implement your own ticket component.</SPAN><BR /><BR /><SPAN>Are there any dependacies in the acegi version for CAS support?</SPAN><BR /><BR /><SPAN>Regards</SPAN><BR /><BR /><SPAN>Andy</SPAN></BODY></HTML> Wed, 19 Jul 2006 18:18:25 GMT https://connect.hyland.com/t5/alfresco-archive/alfresco-authentication-with-cas/m-p/38713#M20561 andy 2006-07-19T18:18:25Z