CAS basics
At Indiana University, Central Authentication Service (CAS) is a login service that allows you to access multiple password-protected web systems after logging in once on a central authentication server; this is often referred to as single sign-on.
CAS currently supports several IU web applications, including Oncourse, OneStart, SafeWord card authentication, TimeKeeping, PeopleSoft, HRMS (payroll), and the employee Paid Time Off (PTO) system. In the future, other IU systems will begin using CAS, allowing you to access these systems with single sign-on. For example, after you have authenticated once using CAS, you will be able to access services such as IU Webmail without having to log in again.
You will be automatically redirected to the CAS login screen when you access one of the supported systems, unless you have already authenticated to CAS during your session. You can also reach the CAS login screen directly at:
https://cas.iu.edu/cas/loginNote: If your passphrase is over two years old, CAS
will remind you to change it. Select Change my passphrase to
go to the Passphrase Maintenance page, or No thanks,
just finish my login to continue to CAS. This reminder will
appear every time you log into CAS, until you change your passphrase.
CAS currently supports three types of authentication: Kerberos, SafeWord, and Guest. Utilizing the many available tools, CAS clients can be deployed on a combination of platforms including Windows, Linux, and both Apache and IIS. CAS supports a variety of tools and languages including Java, Active Server Pages, and Perl.
At IU, no single sign-on solutions other than CAS are available, although other ways exist to authenticate users directly.
