Course Outline


  • The case for SOS (Single-Sign-On-Authentication)
  • CAS vs LDAP vs OpenID

An overview of the CAS Architecture

  • System components
  • CAS Server
  • CAS clients
  • Supported protocols
  • Software components
    • Spring MVC/Spring Webflow
    • Ticketing
    • Authentication

Building CAS as an Overlay Project

  • Building and deploying with Gradle, Maven and Docker
  • Using custom and third-party source
  • Managing dependencies

Configuring Authentication in CAS

  • Orchestrating authentication handlers with authentication manager
  • Choosing authentication handlers and schemes
  • Testing the default authentication scheme
  • Principal Resolution
  • Transforming the user id
  • Setting up "Remember Me" long-term authentication
  • Setting up proxy authentication
  • Multi-factor authentication (MFA)
  • Limiting failed login attempts with login throttling
  • Configuring an SSO session cookie

Attribute Resolution and Release

  • Principal-Id attribute: receiving authenticated userid
  • Attribute release policy: Releasing attributes to applications
  • Caching attributes: Caching resolved attributes
  • Encrypting attributes: Conditionally encrypting attributes


Summary and Next Steps


  • An understanding of security concepts (authentication, authorization etc.)
  • Familiarity with Linux and the command line


  • System administrators
  7 Hours


Related Courses

CEH - Certified Ethical Hacker v12

  35 hours

Certified Chief Information Security Officer (CCISO)

  35 hours


  21 hours

Open Source Cyber Intelligence - Introduction

  7 hours

Open Source Intelligence (OSINT) Advanced

  21 hours

Fundamentals of Corporate Cyber Warfare

  14 hours

Certificate of Cloud Security Knowledge

  14 hours

Microsoft SDL Core

  14 hours

C/C++ Secure Coding

  21 hours

Standard Java Security

  14 hours

Java and Web Application Security

  21 hours

Advanced Java Security

  21 hours

Advanced Java, JEE and Web Application Security

  28 hours