Colin,
I was thinking the user would enter their home organization rather than the
auth provider.
CAS should step through different authentication mechanisms in the order they
are listed [in config] until it finds a match or exhausts all mechanisms. We
use multiple LDAP entries that differ
Colin,
In federated access, the user is often presented with a discovery lookup where
they select or type their chosen identity provider. It is possible to modify
the CAS web flow,
https://apereo.github.io/cas/6.1.x/webflow/Webflow-Customization.html, and
insert such a page.
See,
Folks,
I have an central application that will be used by multiple groups of
users. These users are organized organizationally in LDAP as the primary
system of record. However each organization will have a potentially
different choice of which of my available authentication providers need
to