Thursday 6th June, 2013
10:45am to 11:30am
Enterprises have multiple domains and different identity stores. Each domain could have it's own CAS server and backend. SSO across multiple CAS servers is often a requirement. More specifically users wish to access services across domains but authenticate with a particular domain. We present a solution to enable SSO and attribute release across multiple CAS domains while providing the user the capability to specify their "home" domain. Using CAS's trusted authentication capability combined with appropriate redirection from CAS clients we have created a simple framework for federation. Highlights include supporting a users need to authenticate to a specific domain or the default if none is specified, attribute release across multiple CAS servers to the end service and support for both browsers and non-browsers (REST clients). As part of the redirection CAS clients validate redirection requests to ensure that CAS domains are trusted. We present how CAS servers can be configured in different modes to enable federation.
Vijayanand Bharadwaj is a Sr. Research Scientist at EMC Corporation. After obtaining his PhD in Computer Science from West Virginia University he joined the CTO at EMC. He has been working on advanced development in Cloud Computing, Security, REST, SOA and Systems Resource Management. As part of the Advanced Architecture Group at the CTO he works on devising solutions for EMC?s customers. His interests include Enterprise Integration Patterns, Virtualization, CSCW and anything technology-related. Before joining EMC he was a lecturer and researcher at West Virginia Univ. He spends his spare time with his family and tries to catch up on the latest movies and interesting reads. Though a home body he has travelled quite a bit on the insistence of his wife and has come to enjoy it.
John Field has more than 20 years experience in information security. He is presently a Consultant Scientist and security architect in the EMC office of the CTO, where he is a member of the Architecture and Applied Research group. In this capacity, he does cutting edge security research, security analysis, and advanced development, as well as strategic consulting.
Sign in to add slides, notes or videos to this session