Fawnoos Blog

Guides, walkthroughs and opinions on Open Source Identity and Access Management.

Search By Keyword Search By Topic

Apereo CAS - Azure Active Directory Authentication

Learn about available integration strategies that allow Apereo CAS to use Azure Active Directory as an authentication and attribute source.

Apereo CAS - Redis All The Things

Learn about available integrations strategies that allow Apereo CAS to use Redis behind the scenes to manage application registration records, tokens, consent decisions, terms of use policies, etc.

Apereo CAS - Delegated Authentication Profile Selection

Learn how to link a user profile from an external identity provider in delegated authentication flows, allowing the user to select the final profile from a list of candidates found in LDAP directories of your choice.

Apereo CAS - Integrations with Apache Syncope

Learn about available strategies that allow one to set up an integration between Apache Syncope and Apereo CAS.

Apereo CAS - MFA Enrollment w/ Duo Security

Handle multifactor user enrollment with Duo Security with your registration application and provide a seamless login experience with Apereo CAS.

Apereo CAS - SSO Session Management

Learn how to control and manage single sign-on sessions in Apereo CAS and tune session timeouts for the betterment of all mankind.

Apereo CAS - Delegated Authentication with Microsoft Azure Active Directory

Learn how to use Microsoft Azure Active Directory as an external OpenID Connect identity provider and connect it to CAS for a delegated/proxy authentication scenario.

Apereo CAS - Grouper Integrations

Fetch user groups from Internet2's Grouper and collect their CAS attributes for application access enforcement and better healthcare.

Software Upgrade Failures; Pitfalls to Recognize & Avoid

A somewhat non-biased and personal take on why software projects typically end up at risk of failure, with particular attention on those that attempt upgrades in the world of open-source identity and access management.

Apereo CAS - QR Code Authentication

Allow client applications and mobile devices to scan a QR code, generated by the Apereo CAS server, and subsequently login.

Apereo CAS - OpenID Connect Scopes & Claims

Configure Apereo CAS to act as an OpenID Connect identity provider, allowing the release of custom scopes and claims to applications.

Apereo CAS 6.6.x Deployment - WAR Overlays

Learn how to configure and build your own CAS deployment via the WAR overlay method, get rich quickly, stay healthy indefinitely and respect family and friends in a few very easy steps.

Apereo CAS - Tracking & Auditing Events via Audit Log

Learn how to track, inspect and store auditable activities and events in Apereo CAS.

Apereo CAS - Working with OpenID Connect & DPoP Access Tokens

A short overview of how to work with OAuth access tokens via a proof-of-posession (DPoP) mechanism. This mechanism allows for the detection of replay attacks with access tokens.

Apereo CAS - Username & Principal Transformations

A short overview of how usernames can be transformed and modified before the credential submission for the authentication request in Apereo CAS.

Apereo CAS - Token Authentication w/ JWTs

A short overview of Apereo CAS handling authentication events accompanied by JWTs as credentials.

Apereo CAS - Self Service User Account Registration & Sign up

Learn how to turn on and configure the account registration flow, allowing users to sign up and create accounts.

Apereo CAS - User Interface Customizations

A review of Apereo CAS user interface customization strategies, including themes for those who enjoy front-end development and the wonderful world of UI/UX.

Apereo CAS - Google Apps Integration

Learn how to use Apereo CAS as a SAML2 identity provider to integrate with Google Apps.

Apereo CAS - RESTful Delegated Authentication

Learn how to use an external REST API to outsource the construction and configuration of external delegated identity providers.

Apereo CAS - Sharing Subject Identifiers with Client Applications

Review configuration options for application policies that allow a CAS, SAML2, or OpenID Connect relying party to receive the authenticated username from Apereo CAS.

Enter your search term: