How can I use CAS to secure my website for on-campus access only?

This FAQ was last modified on: Tuesday, January 16, 2018 05:46pm

Georgia Tech uses the Central Authentication System (CAS) to provide a centrally managed, single sign-on solution for campus web applications.  WebHosting has integrated CAS support into the basic server configuration, which allows you to use CAS to restrict access to authenticated Georgia Tech users.

This method uses the mod_cas module for securing directories and files. However, this method does not work for integrated applications such as Drupal or Wordpress. To secure a directory simply create a .htaccess file in the directory and add the following 2 lines:

AuthType Cas

Require valid-user


Save the file and the system will automatically see this file on the next request and will validate the user who accesses with CAS.  Using the CAS redirect method involves sending the user to the GT Login Service at The identity of the authenticated user is available via the REMOTE_USER environment variable.