1. Right now, we're just targeting users with elevated privileges in the IdM and HR/Financial systems. 2. Nobody from my group will be at Educause, but are you going to the InCommon CAMP next month? I'll be there for the whole week. 3. I didn't want to add a license since UCR didn't have anything on their repo and the majority of the code is theirs, but I'd like to use the Apache license.
-- Eric Pierce Identity Management Architect Information Technology University of South Florida (813) 974-8868 -- [email protected] ________________________________ From: Bryan E. Wooten <[email protected]> Sent: Monday, October 14, 2013 9:01 AM To: [email protected] Subject: RE:[cas-dev] DuoSecurity Two-Factor Authentication for CAS Eric, This is very exciting. We are planning on using the UCR code as well for the NSTIC grant. A couple of questions. 1. Can you share your use cases? 2. Will anyone from USF be attending Educause this week? I would love to meet. 3. Do you plan on including a license statement for your code on github? Cheers, Bryan From: Pierce, Eric [mailto:[email protected]] Sent: Monday, October 14, 2013 6:40 AM To: [email protected] Subject: [cas-dev] DuoSecurity Two-Factor Authentication for CAS Many of you have probably heard of DuoSecurity's Two-factor authentication system (https://www.duosecurity.com). Duo has an integration for Shibboleth, but there's currently nothing available for CAS. Michael Kennedy developed a solution for UC Riverside and posted it on GitHub (https://github.com/highlnd/cas-overlay-duo). I've built on that work and developed a CAS extension that adds Duo support to CAS: https://github.com/epierce/cas-server-extension-duo Deployers can require two-factor auth by service; all users (or a pre-defined subset) accessing a service are required to login with Duo, or by user; the second factor is necessary regardless of the service the user is accessing. We're not using this module in production yet, but it's been in our test and pre-production environments for the last few weeks and testing has gone very well. We're increasing the number of Duo licenses we have and will be rolling it out to a larger pilot group soon. I'd like to get more people testing it, though. If anyone is using Duo now or is thinking about two-factor in general, please try it out and send some feedback. Thanks, -Eric -- Eric Pierce Identity Management Architect Information Technology University of South Florida (813) 974-8868 -- [email protected]<mailto:[email protected]> -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
