[]
v7.0
(Showing Draft Content)

CAS

The Central Authentication Service (CAS) is a single sign-on (SSO) authentication protocol used in the Wyn Enterprise application. CAS enables users to authenticate themselves once with their credentials (such as username and password) and then grants them access to multiple applications without the need to re-enter their login credentials. CAS works by centralizing the authentication process and ensures that web applications do not directly handle sensitive user credentials like passwords instead, they rely on the CAS server to verify user identities.


Upon successful authentication, CAS issues a unique ticket to the user's browser, which can be presented to other applications for access. This ticket serves as proof of authentication and allows the user to seamlessly navigate between CAS-enabled services without the need for repeated logins.


CAS also provides features for single log-out, which means that when a user logs out from one application, they are automatically logged out from all CAS-enabled applications, enhancing security and user convenience.


Switch to the Admin Portal and follow the below instructions to configure the CAS authentication protocol in Wyn Enterprise,

  1. Navigate to Configuration >> System Configurations >> SSO Settings and select the CAS option from the Authentication Protocol dropdown.

    navigate to SSO settings and select CAS

  2. Add the CAS settings that appear in the SSO Settings tab. The CAS authentication settings are listed and described below.

    Setting

    Description

    Values

    Authentication Protocol

    Authentication Protocol parameter is used to specify the protocol used to authenticate users for SSO.

    None, CAS, OIDC, OAUTH

    Scheme

    Scheme parameter is an identifier of the authentication provider.

    CAS

    Disabled

    Disabled parameter is used to disable the SSO function.

    True or False. The Default value is False.

    Allow Incognizant User

    Allow Incognizant User parameter is used to allow users not existing in the Wyn Enterprise application to log in to the application.

    True or False

    Enable SLO

    Enable SLO is used to disable SLO from CAS Authentication Server when users log out from the Wyn Enterprise application.

    True or False

    CAS Server Url Base

    The Cas Server Url Base option uses the base URL of the CAS server which is mandatory and must be provided by you.

    http://auth.groupa.net:****

    CAS Protocol Version

    CAS Protocol Version is used to identify the version number of the CAS protocols.

    1, 2, 3, etc.

    CAS Server Logout Url

    URL used for server logout

    {wyn_url}/account/cas-slo

You can also manually configure the CAS Single Sign-on settings using the Wyn.conf file located in the Wyn system folder. See the CAS Authentication Server help article for more information on the manual configuration of the CAS authentication server for SSO in Wyn Enterprise.