Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Introduction
- The case for SOS (Single-Sign-On-Authentication) for government
- CAS vs LDAP vs OpenID
An overview of the CAS Architecture
- System components
- CAS Server
- CAS clients
- Supported protocols
- Software components
- Spring MVC/Spring Webflow
- Ticketing
- Authentication
Building CAS as an Overlay Project
- Building and deploying with Gradle, Maven, and Docker for government workflows
- Using custom and third-party source
- Managing dependencies
Configuring Authentication in CAS
- Orchestrating authentication handlers with the authentication manager
- Choosing authentication handlers and schemes
- Testing the default authentication scheme
- Principal Resolution
- Transforming the user ID
- Setting up "Remember Me" long-term authentication
- Setting up proxy authentication
- Multi-factor authentication (MFA)
- Limiting failed login attempts with login throttling
- Configuring an SSO session cookie
Attribute Resolution and Release
- Principal-Id attribute: receiving authenticated user ID
- Attribute release policy: releasing attributes to applications for government systems
- Caching attributes: caching resolved attributes
- Encrypting attributes: conditionally encrypting attributes
Troubleshooting
Summary and Next Steps
Requirements
- An understanding of security concepts (such as authentication, authorization, etc.) for government systems.
- Familiarity with Linux and the command line for government IT environments.
Audience
- System administrators for government agencies.
7 Hours
