Single Sign-On in the box with SLED10: CASA

By: mbluteau

September 14, 2006 12:00 am





This article is to quickly introduce CASA, which stands for Common Authentication Service Adapter, which is part of SuSE Linux Enterprise Desktop 10. For those who have been using Novell Single Sign-On or Securelogin in the past, CASA offers similar functionalities, including the capability to Single Sign-On users to Desktop applications and Web sites, and also to interact with a directory for storing and retrieving secrets.

This document is not an extensive technical review but just a quick introduction, and I encourage you to take a look at the Reference guide for more information:

If you install SLED 10 with default options and the Gnome Desktop, you can access CASA manager through the Gnome user-friendly menu:

Figure 1: Accessing CASA Manager.

The first time you access CASA Manager, you will be taken to YaST to enable CASA and you will need to select a master password.

Figure 2: YaST under Security and Users now includes an icon for CASA.

Figure 3: The CASA icon in YaST allows you to either Configure CASA, or to cancel you CASA configuration.

When configuring CASA, you also need to select a master password.

Figure 4: CASA window for changing the Master Password. When configuring CASA, the Current Master Password field is not shown.

Figure 5: The CASA Manager interface, showing the Secrets for the Desktop, Desktop applications, and web sites.

My CASA Manager(see above) shows tabs for Firefox and GNOME Keyring, which enables Single Sign-On for Gnome desktop apps. You can enable support for Firefox, GNOME Keyring, or KDE Wallet, which greatly extends the number of Sign-Ons managed by CASA, by selecting Preferences under Options.

Figure 6: CASA window for enabling supported Stores, accessed through Preferences under Options.

Figure 7: The Firefox store managed through CASA.

Figure 8: The GNOME Keyring store managed by CASA.

The above Figure shows a Samba share called public hosted on a SLES server, for which Single Sign-On has been enabled. You can configure SSO for VNC(top entry), Windows shares, SSH, and other apps under Options, Application SSO, and then Network Manager.

Figure 9: Configuring a secret for a Windows share for Network Manager or Nautilus.

Figure 10: Once added to CASA(GNOME Keyring) you don’t have to provide the username and password for accessing Windows(or Samba) shares.

Click to enlarge.