Learn how your Apereo CAS deployment may be configured to delegate authentication to an external SAML2 identity provider.
Learn how to take advantage of Puppeteer to automate browser-based integration and/or functional tests.
Learn how to tune the Apereo CAS deployment to track and detect risky authentication attempts based on a variety of factors, while allowing for follow-up configurations and verifications.
Learn how to tune the password management features of your Apereo CAS deployment to detect and catch weak passwords that fail the strength criteria of your password policy.
Learn how to customize Keycloak to build your authentication strategy using Keycloak's user federation features.
Learn how Apereo CAS may be configured to check for pawned passwords and warn the user, using the haveibeenpawned.com service
Learn how to manage and enforce password policies for LDAP accounts, and take control of the policy handling with Groovy.
Learn how to build nested or structured claims into an OpenID Connect ID token.
Learn how to manage CAS configuration changes in distributed deployments using Spring Cloud, Spring Cloud Bus, and RabbitMQ.
Learn how to configure and run SAML2 service providers with Docker and connect them to your SAML2 identity providers to test integrations and verify the correctness of functionality.
Learn how to delegate and hand off authentication to an external SAML2 identity provider, and script the extraction of attributes from the identity provider response using Groovy.
Learn how to customize Keycloak to build your own locale resolution rules for login forms and theme templates.
Learn how to build or customize sources of person attributes through attribute repositories and the Person Directory project.
Review configuration options available in the Shibboleth Identity Provider that allows one to build custom scripted attribute definitions programmatically.
Learn to configure Apereo CAS to act as a simple multifactor provider itself.
Learn how to format and decorate CAS audit logs with new styles and formats, and include additional fields dynamically via Groovy.
Learn how to use Keycloak as an external OpenID Connect identity provider and connect it to CAS for a delegated/proxy authentication scenario.
Learn how to tighten the security of SSO sessions by locking down cookies to IP addresses or geographical locations.
A tutorial on how to let Apereo CAS handle authentication events accompanied by JWTs.
Learn how to simulate user authentication attempts and examine responses and payloads in the context of various authentication protocols such as CAS and SAML2.
Learn how to configure, secure and manage the OpenID Connect JWKS of your Apereo CAS deployment with Google Cloud SecretManager and Spring Cloud GCP.