wpCAS-w-LDAP

wpCAS-w-LDAP allows you to use your own CAS architecture to authenticate users in your Wordpress blog. It also allows you to configure an LDAP connection to get user information for user not already members of your WordPress installation. Based largely on wpCAS by Casey Bisson, which was largely based on Stephen Schwink's CAS Authentication plugin. CAS From Wikipedia:

The Central Authentication Service (CAS) is a single sign-on protocol for the web. Its purpose is to permit a user to log into multiple applications simultaneously and automatically. It also allows untrusted web applications to authenticate users without gaining access to a user's security credentials, such as a password. The name CAS also refers to a software package that implements this protocol.

Users who attempt to login to WordPress are redirected to the central CAS sign-on screen. After the user's credentials are verified, s/he is then redirected back to the WordPress site. If the CAS username matches the WordPress username, the user is recognized as valid and allowed access. Authorization of that user's capabilities is based on native WordPress settings and functions. CAS only authenticates that the user is who s/he claims to be. If the CAS user does not have an account in the WordPress site, depending on the plugin's settings, the user is either

1. Denied access or
2. Added to the user database with the default role set on the plugin's options page. LDAP is included as an option for getting user information when they are being added to the database. If LDAP is available on your installation of PHP, you will be given the option of configuring it for this purpose.

LDAP From Wikipedia

The Lightweight Directory Access Protocol, or LDAP, is an application protocol for querying and modifying directory services running over TCP/IP.

1. Download phpCAS and place it on your webserver so that it can be included by the wpCAS-w-LDAP plugin.
2. Place the plugin folder in your wp-content/plugins/ directory and activate it.
3. Set any options you want in Settings -> wpCAS with LDAP or in the wpcasldap-conf.php file.
4. The plugin starts intercepting authentication attempts as soon as you activate it. Use another browser or another computer to test the configuration.

wpcasldap-conf.php wpCAS-w-LDAP can be configured either via the settings page in the WordPress dashboard, or via a configuration file. See wpcasldap-conf-sample.php for an example. If a config file is used, it overrides any settings that might have been made via the settings page and configured portion of that page are hidden. Use of wpcasldap-conf.php is recommended for the CAS and LDAP portions of an WordPressMU installations, as doing so hides the settings menu from users. The option to use LDAP, add users, and default role can be left to blog administrators.