<dependencies>
    <dependency>
        <groupId>${project.groupId}</groupId>
        <artifactId>cas-server-support-ldap</artifactId>
        <version>${project.version}</version>
    </dependency>
    ...
</dependencies>

...
       <bean class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler">
	                <property name="filter" value="cn=%u" />
	                <property name="searchBase" value="ou=IT,dc=domain,dc=vn" />
	                <property name="contextSource" ref="contextSource" />
	            </bean>
	        </list>
	    </property>
	</bean>
	<bean id="contextSource" class="org.springframework.ldap.core.support.LdapContextSource">
        <property name="pooled" value="true" />
        <property name="urls">
        	<list>
            	<value>ldap://localhost/</value>
            </list>
        </property>
		<property name="userDn" value="cn=anonymous,ou=IT,dc=domain,dc=vn" />	
		<property name="password" value="changeit" />	
        <property name="baseEnvironmentProperties">
            <map>
                <entry>
                    <key><value>java.naming.security.authentication</value></key>
                    <value>simple</value>
                </entry>
            </map>
        </property>
	</bean>

# mvn -Dmaven.test.skip=true package install

# cp target/cas.war /usr/share/tomcat6/webapps/

<Connector port="8444" protocol="HTTP/1.1" SSLEnabled="true"
               maxThreads="150" scheme="https" secure="true"
	        keystoreFile="/usr/share/tomcat6/.keystore" keystorePass="changeit
               clientAuth="false" sslProtocol="TLS" />

worker.list=worker1

#
# Defining a worker named ajp13w and of type ajp13
# Note that the name and the type do not have to match.
#
worker.worker1.type=ajp13
worker.worker1.host=localhost
worker.worker1.port=8009

LoadModule 		jk_module modules/mod_jk.so

JkWorkersFile 		/etc/httpd/conf/workers.properties
JkShmFile     		/var/log/httpd/jk.shm

JkLogFile     		/var/log/httpd/mod_jk.log
JkLogLevel    		info
JkLogStampFormat 	"[%a %b %d %H:%M:%S %Y] "

<VirtualHost *:80>
	ServerName	monitoring.domain.vn

	JkMount         /cas/* worker1
</VirtualHost>

<Host name="monitoring.domain.vn"  appBase="webapps"
            unpackWARs="true" autoDeploy="true"
            xmlValidation="false" xmlNamespaceAware="false">
		<Context path="/cas" docBase="cas"/>

LoadModule auth_cas_module modules/mod_auth_cas.so
CASLoginURL http://monitoring.domain.vn/cas/login
CASValidateURL http://monitoring.domain.vn/cas/serviceValidate
CASValidateServer Off
CASCertificatePath /etc/pki/tls/certs/exported-pem.crt
CASCookiePath /var/cache/httpd/mod_auth_cas_cookies/
CASDebug on
<Location /ganglia>
	AuthType CAS
	AuthName "CAS"
	require valid-user
</Location>

Prequirement :
CAS server
Php, Apache
Liferay integrate with Cas (If use VTiger in Liferay as Iframe method)

2. Install & Configure Php:
Reference to http://www.php.net

3. Install & Configure Apache
 http://httpd.apache.org/docs/2.0/install.html

4. Download and Install Vtiger 5.0.2
Reference to http://vtiger.com/index.php

5. Download and build phpCas client
Reference to http://esup-phpcas.sourceforge.net/download.html
Download version : esup-phpcas-0.5.1-1
Build phpCas client (use Ant build on Window or Linux, or Eclipse ant)
Unzip esup-phpcas-0.5.1-1 to your hard disk ex : c:\phpCas.
Create project  phpCas with eclipse (with source at c:\phpCas).
Edit build.properties in folder 'properties'
deploy.home=C:/phpCas/target
Using eclipse ant build to deploy phpCas
If successful you can see CAS folder in C:/phpCas/target

6. Configure Vtiger with CAS server
Add Cas model into vtiger
Copy CAS (C:/phpCas/target) to $Document_Web_Root/vtiger502/modules/CAS
Overwrite 2 new files : Authenticate, Users (vtiger502/modules/Users)
[color=yellow]Users file: Add new function load_user_cas($user_password)[/color]
Authenticate file: Add and modifies something
/* Inserts by Dtha on 05/04/2007 start */
		   	// import phpCAS lib
			require_once('modules/CAS/CAS.php');

			phpCAS::setDebug();

			// initialize phpCAS						
                        phpCAS::client(CAS_VERSION_2_0,'casserver.ntis.myvnc.com',8443,'cas');

			// force CAS authentication
			phpCAS::forceAuthentication();
			/* Inserts by Dtha on 05/04/2007 end */


			global $mod_strings;

			$focus = new Users();

			// Add in defensive code here.
			/* Modifies by Dtha on 05/04/2007 start */
		//$focus->column_fields["user_name"] =to_html($_REQUEST['user_name']);
			//$user_password = $_REQUEST['user_password'];
			//$focus->load_user($user_password);

			$focus->column_fields["user_name"] = phpCAS::getUser();
			$user_password = "no_use";
			$focus->load_user_cas($user_password);
			/* Modifies by Dtha on 05/04/2007 end */
/* Inserts by Dtha on 05/04/2007 start */
You must modifies tree params with your CAS server 's information
			'casserver.ntis.myvnc.com',8443,'cas'

Install somes lib for phpCas client required
[root@vtiger#] export http_proxy=http://your_proxy:port
Install DomXml
php 4  : [root@vtiger#] yum install php-domxml
php 5  : [root@vtiger#] yum install php-dom
Install pear-DB
yum install php-pear-DB
Install pear-Log
yum install php-pear-Log
Install pear-HTTP Request
yum install php-pear-HTTP-Request-1.4.0

7. Start Apache and test now :-)
Open IE and run vtiger login, then you see it wwwect to Cas server login
Then after login, return to Vtiger with user login
8. Using with Liferay portal (using Iframe method)
Login to liferay and add Vtiger info iframe with url :
 http://vtiger.ntis.myvnc.com/vtiger502/index.php?action=Authenticate&module=Users
Logout and login again to Liferay, then go to Vtiger Iframe, you see vtiger page with user login.
Note : Vtiger, Liferay using same username of account (exited in Cas Server-LDAP)