Apereo CAS - Account Profile Management

Posted by Misagh Moayyed on October 06, 2023 · 6 mins read ·
Content Unavailable
Your browser is blocking content on this website. Please check your browser settings and try again.

Account (Profile) management in CAS allows an authenticated end-user to browse and/or update certain aspects of their account in a mini portal like environment. Whether it’s resetting passwords, updating security questions, or scrutinizing login activity and registered devices for multifactor authentication, Apereo CAS’s Account (Profile) Management has it covered.

In the following sections, we’ll break down the key functionalities and advantages of Account (Profile) Management, to give you an understanding of how this feature can enhance your CAS authentication system. Our starting position is as follows:

  • CAS 7.0.x
  • Java 21

Overview

To activate this feature, you do not need to do anything special. Simply, the following feature toggle(s) must be turned on in your CAS properties:

CasFeatureModule.AccountManagement.enabled=true

Then, point your browser to the CAS login page via https://localhost:8443/cas/login, login and you would see the following:

User Attributes

As an authenticated user, you may examine your current set of attributes that are found and retrieved by CAS:

SSO Sessions

You can also look at all your current single sign-on sessions on various devices and platforms and decide if you’d like to revoke and terminate a session:

Multifactor Authentication

If the CAS server is configured and equipped with a multifactor authentication provider such as Google Authenticator, you may also look at your devices registered with CAS for MFA, or optionally register additional devices:

The registration option typically should appear if there are no devices registered with CAS for multifactor authentication, or when CAS is configured to allow multiple devices for MFA.

Password Management

Users may also launch into a password management flow and opt to reset their passwords, update their security questions, etc:

Need Help?

If you have questions about the contents and the topic of this blog post, or if you need additional guidance and support, feel free to send us a note and ask about consulting and support services.

So…

I hope this review was of some help to you and I am sure that both this post as well as the functionality it attempts to explain can be improved in any number of ways. Please feel free to engage and contribute as best as you can.

Happy Coding,

Misagh Moayyed