Hi All, Not sure if the Cas-User list or Cas-Dev list is best place to ask this question. So thought I would try Users first.
I'm curious if anyone has integrated any form of Two factor authentication into Cas. I'm looking to try and add validation of Token based - OATH HOTP Compliant devices into the logon process. Unfortunately Certs aren't suitable for our implementation due to deployment constraints. I've already drastically manipulated the CAS web flow to suit our requirements (adding password expiry checking, user policy check and password reset process etc..). Our company product is also using Spring MVC so have a very good understand of the spring frameworks. So I think I have a pretty good understanding of where within CAS I would need to start investigating the feasibility of adding some sort of two factor. So my question at this stage isn't really how to do it. But more I thought I'd ask if anyone in the community has already tried/done anything like this before I start reinventing the wheel and dive head first into my own custom implementation. Thanks in advance for your time and any suggestions and comments. Many Thanks James James Parry Senior Software Engineer MegaNexus Limited -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
