A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 1 Extending SSO – CAS in Luminis Presented by: Zachary Tirrell Plymouth State University.

Slides:

Advertisements

Similar presentations

MS Access Reporting (BOF) Evaluation Code 303 Bruce Knox University of Arkansas Cooperative Extension Service Bruce Loving University of North Carolina.

Advertisements

Open-source Single Sign-On with CAS (Central Authentication Service)

Open-source Single Sign-On with CAS (Central Authentication Service) Pascal Aubry, Vincent Mathieu & Julien Marchal Copyright © 2004 – ESUP-Portail consortium.

SCT Banner ® Advancement Self-Service Gerald A. Lennon Lehigh University Session Date and Time Tue, October 28, :45am-12:15pm.

Central Authentication Service Roadmap JA-SIG Winter 2004.

Reduce Cost & Complexity Partner logo here Presenters Name (16pt) Presenters Title (14pt) Company/ (14pt) Manage and Deploy Applications using Virtualization.

1 Anchor Yourself Presented by: Cindy Boling University of Central Oklahoma.

March 7, 2005 SCT Luminis and Wayne’s World! Presented by: Genetha Smith, Wayne State University Eric Dau, Wayne State University Morris Reynolds, Wayne.

Evaluation Code 036 Wednesday, 9:00 a.m. – 10:00 a.m. March 31, 2004 STARS Student Tracking & Advising Presented by: Robert Berman, William Hill, Wayne.

A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 1 Password Manager Using Luminis APIs Presented by: Ron Romao Savannah College of Art and.

1 Dec The Hong Kong Institute of Education Library Integrating Innopac with HKIEd “Portal” Environment Ivan Chan The Hong Kong Institute of Education.

UPortal and the Yale Central Authentication Service Drew Mazurek ITS Technology & Planning Yale University JA-SIG Summer Conference ‘04 Denver, CO June.

INDIVIDUAL ACHIEVEMENT. EDUCATIONAL EXCELLENCE. ADMINISTRATIVE INNOVATION. INSTITUTIONAL PERFORMANCE. Banner Training and Help Desk Post Go-Live Becky.

INDIVIDUAL ACHIEVEMENT. EDUCATIONAL EXCELLENCE. ADMINISTRATIVE INNOVATION. INSTITUTIONAL PERFORMANCE. 1 Your Campus Can Enter Time Using Banner Tanya Wickersham,

UPortal Security and CAS Susan Bramhall ITS Technology & Planning Yale University.

JA-SIG CAS Enterprise Single Sign-On Scott Battaglia Application Developer Enterprise Systems & Services Rutgers, the State University of New Jersey Copyright.

Apache Jakarta Tomcat Suh, Junho. Road Map Tomcat Overview Tomcat Overview History History What is Tomcat? What is Tomcat? Servlet Container.

Introduction to MS ® Access for SCT Banner ® Users Evaluation Code 607 Sarah Lawrence and Malinda Richbourg University of North Carolina at Greensboro.

Argos - Moving into the Community Presented by: Bruce Knox University of Arkansas Division of Agriculture Cooperative Extension Service March 23, 2009.

Admission Self Service Kimberly A Saving-Sherman SunGard SCT.

Argos - a Banner Reporting Community Presented by: Bruce Knox University of Arkansas, Division of Agriculture, Cooperative Extension Service March 23,

Upgrading to Novell ® SecureLogin 3.5 Rod Tietjen,

INDIVIDUAL ACHIEVEMENT. EDUCATIONAL EXCELLENCE. ADMINISTRATIVE INNOVATION. INSTITUTIONAL PERFORMANCE. 1 PSU: Extreme Luminis Customization Presented by:

INDIVIDUAL ACHIEVEMENT. EDUCATIONAL EXCELLENCE. ADMINISTRATIVE INNOVATION. INSTITUTIONAL PERFORMANCE. 1 Luminis and external Presented by:

The Central Authentication Service (CAS) Shawn Bayern Research programmer, Yale University Author, JSTL in Action, Web Development with JavaServer Pages.

Requisitions: From Start to Finish Evaluation Code 138 Brett Powell - University of Arkansas Cooperative Extension Service Tuesday, March 11 3:00 pm –

Created by the Community for the Community BizTalk & Build.

WebCAPP Kimberly A Saving-Sherman SunGard SCT. 2 Agenda u WebCAPP Preview u Self Service for Students u Self Service for Faculty & Advisor u WebCAPP Implementation.

A Community of Learning Luminis Platform Workshop Creating a Personal User Experience Presented by: Steven Forman, SunGard Higher Education March 20 th,

INDIVIDUAL ACHIEVEMENT. EDUCATIONAL EXCELLENCE. ADMINISTRATIVE INNOVATION. INSTITUTIONAL PERFORMANCE. 1 Class Title Presented by: Presenter name(s), Institution(s)

Presentation: SOAP in a distributed object framework, Application Servers & AXIS SOAP.

V0.1 BlackBerry HTML5/WebWorks Applications for the BlackBerry ® PlayBook™ Tablet BlackBerry Academic Program Module 5 - Writing HTML5/WebWorks API Extensions.

Extending Vista The PowerLinks WebServices SDK John Hallett Senior Product Manager WebCT, Inc

1 Apache. 2 Module - Apache ♦ Overview This module focuses on configuring and customizing Apache web server. Apache is a commonly used Hypertext Transfer.

A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 1 Setting up a Luminis Test System Presented by: Michael Barsic Savannah College of Art.

Case Study: DirXML Implementation at Waste Management Rick Wagner Systems Engineer Novell, Inc.

April 30, 2007 openSUSE.org Build Service a short introduction Moiz Kohari VP Engineering.

© Blackboard, Inc. All rights reserved. Blackboard Learning System™ Vista Enterprise License The PowerLinks™ Kit Scott Stanley Washington DC 2006.

A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 1 Argos - Moving into the Community Presented by: Bruce Knox University of Arkansas Division.

Presentation: SOAP/WS in a distributed object framework, Application Servers & AXIS SOAP.

A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 1 Implement and Deploy Banner 7 Channels Presented by: Zachary Tirrell), Plymouth State.

CAS Lightning Talk Jasig-Sakai 2012 Tuesday June 12th 2012 Atlanta, GA Andrew Petro - Unicon, Inc.

CAS Update Jasig 2011 Marvin Addison Susan Bramhall Andrew Petro Bill Thompson.

A Community of Learning Moving Forward with Luminis IV Presented by: Dan Bramer Plymouth State University March 20, 2007 Evaluation Code 1011.

A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 1 LEAPing with Luminis Presented by: Bob Coon Luminis Technical Services SunGard Higher.

Presentation: SOAP/WS in a distributed object framework, Application Servers & AXIS SOAP.

Page 1 © 2001, Epicentric - All Rights Reserved Epicentric Modular Web Services Alan Kropp Web Services Architect WSRP Technical Committee – March 18,

Billing for Non Enrollments Presented by: Gayle Callahan, Johnson County Community College March 24, 2009 Course ID 0265 CONNECT TO COMMUNITY. At SunGard.

WEBCAST SCHEDULE Today’s event will run one-hour long. Here are the expected times for each segment of the Webcast:  :00 – :05: Moderator introduces the.

INDIVIDUAL ACHIEVEMENT. EDUCATIONAL EXCELLENCE. ADMINISTRATIVE INNOVATION. INSTITUTIONAL PERFORMANCE. 1 Peek-A-Portal: Part Two Hosted by: Doug Ruschman.

A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 1 Luminis Channels For Banner Presented by: Cyndy Bunte, Dani Lindblom, Carla Norris Rajesh.

11/14/00Copyright © Yale University1 uPortal: A Java Based Portal Framework A Project of JA-SIG ( Presented by: Susan Bramhall,

Modern Programming Language. Web Container & Web Applications Web applications are server side applications The most essential requirement.

Campuses New to Shibboleth: WebSSO Barry Johnson

CAS 3 Introduction and Overview. CAS2 is simple to understand 6 servlets and fewer than 10 JSPs 6 servlets and fewer than 10 JSPs auth package – where.

Welcome to SunGard SCT Banner Advancement Overview.

Introduction to Terra Dotta Applications Integration with Campus Data Systems for institutions beginning their software implementation.

ADFS - Does it Still have a Place? Fitting into the EMS puzzle Frank C. Drewes III 2016 Redmond Summit | Identity.

Office of Information Technology GT Identity and Access Management JA-SIG CAS project (introducing login.gatech.edu) April 29th,

Shibboleth Integration Fairfield University

CAS and Web Single Sign-on at UConn

SaaS Application Deep Dive

Outline SOAP and Web Services in relation to Distributed Objects

e~Print - Innovative Ways We Use It

Outline SOAP and Web Services in relation to Distributed Objects

PHP / MySQL Introduction

Banner Finance Finance Rules.

Office 365 Identity Management

Office 365 Development.

Luminis Platform Workshop Creating a Personal User Experience

Presentation transcript:

A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 1 Extending SSO – CAS in Luminis Presented by: Zachary Tirrell Plymouth State University March 19, 2007 Course ID 455

2 Introduction Purpose: Show how CAS can be used to extend SSO services in Luminis Benefits of the session Gain a new tool in your development toolkit Secure and SSO to more applications Start using CAS, immediately

3 Course ID 455 Topics of Discussion Overview of Plymouth State University What is CAS? How is CAS useful? Where is CAS not useful?

4 Course ID 455 Plymouth State University Overview Small town Plymouth in northern New Hampshire 4000 FTE undergraduates, 500 FTE graduates Small class sizes Growing distance education program High demand for web delivered services Expectation to serve all constituents Tight knit, collaborative community

A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 5 What is CAS?

6 Course ID 455 A bit about CAS Created By Yale, became a JA-SIG project in 2004 Added as an installable module to Luminis in 2004 From the JA-SIG site: An open and well-documented protocol An open-source Java server component A library of clients for Java,.Net, PHP, Perl, Apache, uPortal, and others Integrates with uPortal, BlueSocket, TikiWiki, Mule, Liferay, Moodle and others Community documentation and implementation support An extensive community of adopters

7 Course ID 455 What CAS is not… Slide from Susan Bramhall of Yale University’s presentation on uPortal Security and CAS

8 Course ID 455 So what is it?? Slide from Susan Bramhall of Yale University’s presentation on uPortal Security and CAS

9 Course ID 455 How do I put CAS in Luminis? This is the best part… it’s a simple module install in III.2+ and just available in IV Read the Appendix D of Luminis Installation Guide Less than 8 pages!

10 Course ID 455 API vs Server Based CAS Services API-Based (what PSU does) ESUP’s phpCAS ( Also available in ASP, JSP, Java, Perl, and more! Server-Based (better practice) AuthCAS Apache module ( sig.org/products/cas/client/authcas/index.html) sig.org/products/cas/client/authcas/index.html

A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 11 How is CAS useful? CAS is ideal for homegrown applications or Third Party CAS-ified applications

12 Course ID 455 A simple bit of PHP 1.<?php 2. 3.function casify() 4.{ 5. // import phpCAS lib ( 6. include_once($GLOBALS['INCLUDES'].'/cas/CAS.php'); // initialize phpCAS 9. phpCAS::client(CAS_VERSION_2_0,'luminis.institution.edu',443,'cp/cas/'); // check CAS authentication 12. phpCAS::authenticateIfNeeded(); // at this step, the user has been authenticated by the CAS server 15. // and the user's login name can be read with phpCAS::getUser() return phpCAS::getUser(); 18.} $username = casify(); // nothing past the execution of casify() would occur without acquiring a valid CAS ticket ?>

13 Course ID 455 Power in Simplicity Simple. CPIP and GCF is complicated, CAS is not. Any developer can put CAS in place in their homegrown application with a simple copy paste Friendly URLs. A URL to a CASified application is generally very simple, especially as opposed to CPIP… Blissful Ignorance. It is not necessary for everyone who secures an application with CAS to full understand the protocol, yet the security is still solid Speed. In one week of running CAS we converted over a dozen applications to use it as the sole way to authenticate Reliability. In two years of running CAS, it has never failed

14 Course ID 455 If that’s not enough… CAS is a modern WebSSO technology CAS will be the underlying WebSSO that powers the Luminis implementation of Shibboleth in Luminis IV (unconfirmed but very likely) CAS has a large community of schools using it. In fact, it is the most popular WebSSO technology CAS is open-source

15 Course ID 455 Solving WebCT SSO in CE 6 With CAS SunGard Higher Education did not support WebCT for SSO when we were ready to deploy CE 6 Read WebCT’s guide for Custom SSO Adapted their PHP example to use CAS in less than 100 lines of code, in an afternoon Launched on time! Luminis WebCT WebCT- provided PHP file CAS mod Username request Username SSO

A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 16 Where is CAS not useful?

17 Course ID 455 CPIP/GCF Can Do More CPIP/GCF is complicated, CAS is not CPIP/GCF can do password caching No session management If a Third Party application requires a password, CAS cannot provide this without fairly advanced proxying Examples of these application types may include: webmail systems (though a solution does exist) ftp/sftp/smb backed web interfaces (smbwebclient) Third party applications that will LDAP auth, but are not CAS-ified

18 Course ID 455 Summary CAS is super easy and secure! CAS is common, easy to support, open, and available now If you run Luminis and do any custom web application development, CAS should be part of your development toolkit. CPIP/GCF still has it’s place

19 Course ID 455 Zachary Tirrell Please complete the online class evaluation form Course ID 455 SunGard, the SunGard logo, Banner, Campus Pipeline, Luminis, PowerCAMPUS, Matrix, and Plus are trademarks or registered trademarks of SunGard Data Systems Inc. or its subsidiaries in the U.S. and other countries. Third-party names and marks referenced herein are trademarks or registered trademarks of their respective owners. © 2007 SunGard. All rights reserved. Thank You, Questions & Answers