Stephane Bailliez wrote: > I'd be interested to know more bout how Rutgers or others are > integrating CAS for things like webdav, (s)ftp, shell accounts, etc... > in addition to web-application access. > We've experimented, but are not in production with using the PAM module to allow services like SFTP to accept CAS tickets in addition to Kerberos, Safeword, and other authentication mechanisms. Our main use-case involves proxy-tickets from the portal (though it could be extended to other apps like webmail, webftp, etc.) to allow CASified services to interact with backend providers like IMAP, SFTP, etc. It's been slow going though, since our IMAP and SFTP resources are run by a separate group, so it's been a "spare" time kind of project.
Shell accounts... not sure it's that valuable, though I could see a webapp using a terminal emulator as an integration of last resort strategy. I've privately wondered whether our LDAP server should also be configured to have some kind of support for authentication accepting a proxy ticket. Then we'd have a quick way to CASify these backing services if they already support LDAP. > Is there any known location where to find background information for > this ? It would be very interesting to know the organizational > structure, datastore, infrastructure and application integrations (pam > anyone ?) > Yale is pretty heavily CASified across their infrastructure, and may be a good reference site for what you're looking for. Jason -- Jason Shao Application Developer, Architecture & Engineering Team Rutgers University - Enterprise Systems & Services v. 732-445-2869 | f. 732-445-5493 | [EMAIL PROTECTED] _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
