Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

Ticket expiration policy is the primary configuration point for CAS security policy.

Although there are many other aspects of security policy that can impact overall security policy of an SSO solution, e.g. password expiration, most of those are outside the scope of CAS configuration. Password expiration is probably the most requested security policy feature of CAS on the cas-user list, and there have been some attempts to provide extension to CAS for this feature. LDAP Password Policy Enforcement (LPPE) is one such solution.

  • Ticket Expiration PolicyCAS supports a pluggable and extensible policy framework to control the expiration policy of ticket-granting tickets (TGT) and service tickets (ST).
  • Remember MeStarting with CAS 3.2.1, CAS has support for long term Ticket Granting Tickets, a feature referred to as "Remember Me".
  • Throttling Login Attempts
  • No labels