Hi in my case I think CAS is not really useful. It is because For my application there is onl;y single point entry for the user. All the other services are not directly used by user they are services used by the application. So logout on all the systems can be done by invalidating the session.
I think the following statement is not entirely true " Your web applications will never have access to username/password information & they won't need to." If I don't use gateway then I have to get authenticated for every service and when I access the service with the ticket provided for that service the service validates the ticket against CAS and in return service gets the "Username" and ticket validation status. -----Original Message----- From: Scott M. Holodak [mailto:[email protected]] Sent: Monday, March 22, 2010 12:09 AM To: [email protected] Subject: RE: [cas-user] How does CAS helps me better? Hi, You'll get a single standardized login page for all of your applications. This is helpful for training users about security--i.e., "Nobody will ever ask for your password by e-mail, in person, or over the phone. Don't use post-it notes or put your password under your keyboard. You will only ever have to enter your password on cas.server.edu and there may even be an expensive green SSL certificate on the address bar." Your web applications will never have access to username/password information & they won't need to. You can get single sign on functionality meaning that if you log into one of your applications, logging into the other applications is handled without re-prompting for credentials and possibly even without the user noticing they were logged in (gateway). You can get single signoff functionality so if you log out of one app, you are logged out of all apps. Proxy ticket support lets your applications make authenticated calls into external systems/services without ever collecting or exchanging usernames and passwords. -Scott > -----Original Message----- > From: Muralidhar Yaragalla [mailto:[email protected]] > Sent: Sunday, March 21, 2010 9:50 AM > To: [email protected] > Subject: [cas-user] How does CAS helps me better? > > Hi I have LDAP server running and there are 3 systems which are > configured against the LDAP. When I present username and password to > any of the system I want to use they validate the username and password > against LDAP and if they are valid they grant access to the system. > Except password protection if I switch to CAS for central > authentication what benefits do I get? > > > > Thanking you all. > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see http://www.ja- > sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
