1 of 3

CAS Support for �Multifactor AuthN

https://twitter.com/misagh84

https://github.com/mmoayyed

mmoayyed@unicon.net

Misagh Moayyed�CAS Committer, PMC�Identity and Access Management @ Unicon, Inc

2 of 3

CAS v4 MFA API Support�http://bit.ly/1ummesT

  • Support for authentication policies
    • PolicyBasedAuthenticationManager
    • ContextualAuthenticationPolicy
    • RequiredHandlerAuthenticationPolicy
  • Authenticating a collection of credentials
    • Require multiple handlers to succeed such that:

Only permit users with SSO sessions created from both a username/password and OTP token to access this service.

3 of 3

CAS MFA Provider Support

  • FOSS extension to CAS v3.5.x
  • Authenticating using multiple factors
  • RPs to require MFA level
    • Per application
    • Per user/group
    • Opt-In
  • RPs to validate/consume MFA context
  • Support for CAS v4.x inflight…

https://github.com/Unicon/cas-mfa