There is an internal CAS in Luminis 4 but it is not full featured. We talked with Ellucian about this very issue and if I recall correctly, their suggestion was to have the external CAS trust the internal CAS. However, we want to move away from Luminis so we did not want everyone to be required to authenticate in Luminis to get access to the services.
I tried to look back at our SR history but it looks like that conversation must have taken place during a webex because its not in the notes. Dan Smith Systems Administrator Jefferson College On Thu, Aug 8, 2013 at 3:29 PM, Danner, Mearl <[email protected]> wrote: > I believe Luminis 5 is the only version that has it’s own CAS. We are > running a version of 4 (not sure the level) and it does not.**** > > ** ** > > Mearl Danner**** > > Systems Programmer**** > > Samford University Technology Services**** > > http://www.samford.edu**** > > ** ** > > *From:* Ben Branch [mailto:[email protected]] > *Sent:* Thursday, August 08, 2013 3:19 PM > *To:* [email protected] > *Subject:* RE: [cas-user] Luminis 4.3 and External CAS**** > > ** ** > > Dan,**** > > ** ** > > Pardon me if I seem a bit noobish on the Luminis terminology, as I am > merely the Linux admin that supports our CAS. ;)**** > > ** ** > > As I understand Luminis, it has a built in CAS and a built in LDAP that > the (Internal) CAS uses to authenticate from. What I would like to happen, > is for Luminis to use an external CAS for authentication (i.e., not the one > built into Luminis). The reason being is that I have a great deal of > applications that are already on an external CAS. With Luminis using its > own internal CAS for authentication, if we link to one of the applications > that is using the external CAS, this causes the user to login twice (Once > into the initial Portal, and then again into the external CAS for whatever > application they are accessing). IMO, this completely defeats the purpose > of SSO. When you say, it will only do external authentication, are you > indicating that it will only authenticate against something like LDAP or AD > vs. CAS? Again, I apologize for my lack of understanding with the Luminis > product/terminology.**** > > ** ** > > Ben Branch > UNIX/Linux Administrator**** > > University of Central Oklahoma**** > > ITIL Foundation v3, Network+, RHCSA > > 100 N. University Drive, Box 122**** > > Edmond, OK 73034**** > > D: 405.974.2649 | M: 405.550.6804 | *[email protected]* | www.uco.edu**** > > **** > > “I am wiser than this man, for neither of us appears to know anything > great and good; but he fancies he knows something, although he knows > nothing; whereas I, as I do not know anything, so I do not fancy I do. In > this trifling particular, then, I appear to be wiser than he, because I do > not fancy I know what I do not know.” - Socrates**** > > ** ** > > *From:* Smith, Daniel [mailto:[email protected] <[email protected]>] > *Sent:* Thursday, August 08, 2013 2:55 PM > *To:* [email protected] > *Subject:* Re: [cas-user] Luminis 4.3 and External CAS**** > > ** ** > > Ben,**** > > ** ** > > Are you trying to authenticate only to an external source or do you want > the SSO capabilities as well with Luminis 4.3?**** > > ** ** > > We are using Luminis 4.3 and it will remain for some period with a CAS > deployment but we have been told many times that 4.3 does not support the > SSO capabilities. It will only do external authentication. We plan to > replace Luminis 4.3 in the coming year.**** > > ** ** > > Dan Smith**** > > Systems Administrator**** > > Jefferson College**** > > ** ** > > On Thu, Aug 8, 2013 at 2:50 PM, Ben Branch <[email protected]> wrote:**** > > All,**** > > **** > > I’m curious if anyone on this list is using Luminis 4.3 with an external > CAS? I’ve made great progress in getting the majority of the apps we have > here on the CAS, but the piece that is holding us back from tying it all > together is the fact that our Luminis portal does not auth to the external > CAS. Is it possible to make this happen? Are the features present in > Luminis 4.3 and we are just missing something? Any help on this would be > greatly appreciated. **** > > **** > > Ben Branch > UNIX/Linux Administrator**** > > University of Central Oklahoma**** > > ITIL Foundation v3, Network+, RHCSA > > 100 N. University Drive, Box 122**** > > Edmond, OK 73034**** > > D: 405.974.2649 | M: 405.550.6804 | *[email protected]* | www.uco.edu**** > > **** > > “I am wiser than this man, for neither of us appears to know anything > great and good; but he fancies he knows something, although he knows > nothing; whereas I, as I do not know anything, so I do not fancy I do. In > this trifling particular, then, I appear to be wiser than he, because I do > not fancy I know what I do not know.” - Socrates**** > > **** > > > ***Bronze+Blue=Green*** The University of Central Oklahoma is Bronze, > Blue, and Green! Please print this e-mail only if absolutely necessary! > > ***CONFIDENTIALITY*** -This e-mail (including any attachments) may > contain confidential, proprietary and privileged information. Any > unauthorized disclosure or use of this information is prohibited. **** > > -- > You are currently subscribed to [email protected] as: > [email protected]**** > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user**** > > ** ** > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user**** > > > ***Bronze+Blue=Green*** The University of Central Oklahoma is Bronze, > Blue, and Green! Please print this e-mail only if absolutely necessary! > > ***CONFIDENTIALITY*** -This e-mail (including any attachments) may > contain confidential, proprietary and privileged information. Any > unauthorized disclosure or use of this information is prohibited. **** > > -- > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user**** > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
