Ranking Providers for step-up authentication

29 views
Skip to first unread message

Fabio Martelli

unread,
May 20, 2019, 7:09:19 AM5/20/19
to CAS Community

Hi All, I'd like to exploit "Ranking Providers" feature [1] in order to implement a step-up authentication.

My scenario is exactly the following:

  • CAS has achieved an SSO session, but a separate request now requires step-up authentication with another provider of a greater "rank".

Can someone address me in this direction? I didn't find any documentation for implementing this feature.

Thank you in advance.

Regards,

F.

[1] https://apereo.github.io/cas/5.2.x/installation/Configuring-Multifactor-Authentication.html#ranking-providers

-- 
Fabio Martelli
https://it.linkedin.com/pub/fabio-martelli/1/974/a44
http://blog.tirasa.net/author/fabio/index.html

Tirasa - Open Source Excellence
http://www.tirasa.net/index.html?pk_campaign=email&pk_kwd=fm

Apache Syncope PMC
http://people.apache.org/~fmartelli/

Misagh Moayyed

unread,
May 20, 2019, 2:23:15 PM5/20/19
to CAS Community
This might get you started in the right direction: https://apereo.github.io/2019/05/13/cas61x-mfa-selection-strategies/

Fabio Martelli

unread,
May 21, 2019, 3:38:56 AM5/21/19
to cas-...@apereo.org, Misagh Moayyed
Il 20/05/19 20:23, Misagh Moayyed ha scritto:
This might get you started in the right direction: https://apereo.github.io/2019/05/13/cas61x-mfa-selection-strategies/

Hi Misagh, thank you for this input.

Just a pair of questions more:

  • How do I have to configure ranking in case of custom providers?
  • Is there a way to update an existing SSO session (step-up)?

Thank you in advance.

Kind regards,

F.


On Monday, May 20, 2019 at 4:09:19 AM UTC-7, Fabio Martelli wrote:

Hi All, I'd like to exploit "Ranking Providers" feature [1] in order to implement a step-up authentication.

My scenario is exactly the following:

  • CAS has achieved an SSO session, but a separate request now requires step-up authentication with another provider of a greater "rank".

Can someone address me in this direction? I didn't find any documentation for implementing this feature.

Thank you in advance.

Regards,

F.

[1] https://apereo.github.io/cas/5.2.x/installation/Configuring-Multifactor-Authentication.html#ranking-providers

-- 
Fabio Martelli
https://it.linkedin.com/pub/fabio-martelli/1/974/a44
http://blog.tirasa.net/author/fabio/index.html

Tirasa - Open Source Excellence
http://www.tirasa.net/index.html?pk_campaign=email&pk_kwd=fm

Apache Syncope PMC
http://people.apache.org/~fmartelli/
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/75d6257e-e144-411c-b708-b0e906fd68dd%40apereo.org.
Reply all
Reply to author
Forward
0 new messages