The document summarizes Indiana University's upgrade of its Central Authentication Service (CAS) from version 2 to version 3.5.2. Key aspects of the upgrade included designing and implementing a system of "AppCodes" to dynamically render user interfaces and determine authentication requirements, integrating primary authentication via Kerberos and a knowledge base, enabling secondary authentication via RADIUS for multi-factor authentication, extending CAS protocols to support IUCAS, and setting up an active-active high availability deployment using EhCache for ticket storage. The project was developed using Git source control and a continuous integration workflow.