Dashboard > Central Authentication Service > Home > Wishlist > Multi Factor Authentication
CAS has a new home page: http://www.ja-sig.org/products/cas/
Central Authentication Service Log In | Sign Up   View a printable version of the current page.
Multi Factor Authentication

Added by Stephen More , last edited by Jason Shao on Jul 23, 2007  (view change)
Labels: 
(None)

 I would like to define a level 1 authenticator....in this example it will be a user password combination.

Only if the user succeeds at level 1 then it would progress to level 2.

My level 2 authenticator could look for the existence of a cookie, certificate or valid client ip address. Any one of these items would be held in a data store that is related to the username that was presented in level 1. In the event that this item is missing then the user would be directed to a web page where he/she will need to answer more questions/identify images to prove that he/she is who they say they are. Only after the user passed this level 2 authenticator would they be allowed access to other systems.

Comments  Hide Comments
Jan Van der Velpen
Jan 24, 2007 15:36

Maybe this can be solved by making authenticationHandlers actually Spring actions. (and do the same with principalresolvers etc)
Powered by a free Atlassian Confluence Open Source Project License granted to Java Architectures Special Interest Group. Evaluate Confluence today.
Powered by Atlassian Confluence 2.7.3, the Enterprise Wiki. Bug/feature request - Atlassian news - Contact administrators