This plugin hasn’t been tested with the latest 3 major releases of WordPress. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.


If you have a CAS service and you want to authenticate your users in WordPress with the same credentials, you can use this plugin to get the job done.

The users that attempt to start their sessions in WordPress, will be redirected to the CAS single sign-on page, where their sessions starts. If the user data is valid, they are redirected back to WordPress. If the credentials already exist in your WordPress the user will be authenticated. Otherwise, if the user was pre-registered in the configuration page, the user will be created.

CAS Maestro can also connect to a LDAP server to access personal data to be used in user profile.

Features included:

  • Full integration with the WordPress authentication system
  • One of the most secure CAS plugins for WordPress
  • Possibility to pre-register some known users, with the desired role
  • LDAP integration for user data fill, such as name and e-mail
  • Validation mechanisms to avoid getting blocked in case of misconfiguration
  • Mail notification for pre-registered users
  • Network activation allowed (todo: network panel for configuration)


  • The full CAS Maestro settings page
  • CAS Server settings
  • Mailing options


  1. Install Cas Maestro either via the plugin directory, or by uploading the files to your server (/wp-content/plugins/)
  2. Activation can be made in ‘Plugins’ menu
  3. Configure carefully Cas Maestro through plugin’s page

ATTENTION If for some reason you are unable to access the administrator panel, you can disable the CAS Maestro behavior by adding the code line define(‘WPCAS_BYPASS’,true); to wp-config.php file. That way you can configure CAS Maestro before revert the previous instruction.

Did you know… If you leave empty fields in CAS Maestro configuration, the plugin will ask you to fill fields before final activation. Therefore you can use WordPress login system before the configuration conclusion.


In case that I cannot access the content manager due to a misconfiguration of this plugin, what steps should I perform?

You can bypass the CAS Authentication logging-in on This will allow you to login using your WordPress account.

Beside that, you can temporary disable the WordPress behavior doing the following:

  1. Edit the file wp-config.php and search for define('WP_DEBUG', false)su; definition
  2. Before that definition, write define('WPCAS_BYPASS',true);
  3. Reconfigure the plugin and remove the line that was added.

Alternatively, you may simply uninstall CAS Maestro as follows:

  1. Remove the directory of plugin CAS Maestro
  2. Perform access according to the login WordPess
  3. Reinstall CAS Maestro
It is possible to login using WordPress accounts?

Yes. But the login URL is slighty different: you must login over /wp-login.php?wp URL. This will give access to the standard WordPress login form so you can use both authentication methods.

I want to change the capability that allows users to edit the users allowed to register. How can I do it?

There is a filter cas_maestro_change_users_capability that can be used to change the capability. You can add the following to your functions.php:
function change_casmaestro_capabilities($old) {
return ‘your_new_capability’;
add_filter(‘cas_maestro_change_users_capability’, ‘change_casmaestro_capabilities’);
By default, the capability is edit_posts.


Read all 7 reviews

Contributors & Developers

“CAS Maestro” is open source software. The following people have contributed to this plugin.


Translate “CAS Maestro” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.



  • Users with ‘edit_posts’ capability can now edit only the authorized users (this can be changed using a filter – see FAQ)


  • Fixed bug with wrong type of the CAS Server version


  • CAS Server Path is no longer a mandatory field


  • Bypass to the CAS authentication implemented using a query parameter
  • Minor bug fixes


  • phpCAS deprecated functions replaced


  • Minor bug fixes


  • Fixed php short tag bug
  • Fixed ‘Undefined index’ notices (thanks zacwaz)


  • Bug fix with includes, ready for WordPress 3.9


  • Initial release.