kerberos authentication and computer login
Scott Battaglia
scott.battaglia at gmail.com
Thu Jan 31 13:57:51 EST 2008
Michel,
If the web browser that your organization uses will expose the Kerberos TGT
(or generate something else that is needed) such that CAS can obtain it from
the request, then you can use it. I'm not sure which, if any browsers do
that.
Thanks
-Scott
On Jan 31, 2008 12:39 PM, Sauvard, Michel <michel.sauvard at eds.com> wrote:
> Hello, I check if we can use CAS.
>
> Our concern is to avoid a login on the computer then the CAS connection.
>
> If we use Kerberos authentication, for both computer login (UNIX PAM,
> Windows pGINA) and CAS
> The computer login gives a Kerberos TGT.
>
> Do you think we have a lot of work, if any, to use this ticket instead of
> user/password to obtain the CAS TGC without displaying an authentication
> form.
>
> Best regards
>
> *Michel SAUVARD*
> *EDS - France*
> *Département Solution et Service en Sécurité Publique (D3SP)
> 190, rue Claude-Nicolas LEDOUX
> BP 83000 - 13793 Aix-en-Provence Cedex 3 France
> *Ê +33 (0)4 42 39 39 05
> * ***mailto:michel.sauvard at eds.com* <michel.sauvard at eds.com>
>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
--
-Scott Battaglia
LinkedIn: http://www.linkedin.com/in/scottbattaglia
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20080131/abb1ebca/attachment.html
More information about the cas
mailing list