Secure Global Desktop and OpenSSO Single Sign-On

Sun Secure Global Desktop can be nicely integrated in a web access management infrastructure based on OpenSSO for single sign-on and authorization. Here's a paper I published with the OpenSSO community on how to do this:
https://opensso.dev.java.net/files/documents/3676/112554/SecureGlobalDesktop-OpenSSO-Integration.pdf
http://wikis.sun.com/display/OpenSSO/Technical+Articles

Comments:

That's excellent. Presumably it's possible to do this with other SSO providers?

Posted by Ceri Davies on October 06, 2008 at 04:37 PM CEST #

Thanks, Ceri. Yes, it is possible to do this with other access management software as it relies on setting the REMOTE_USER variable in the HTTP servlet request. SGD is configured to use this (third party authentication). In the case of OpenSSO it is the policy agent that injects this parameter. It is crucial that only trusted parties can inject this parameter and also overwrite whatever the client puts into this parameter.

Posted by Joachim Andres on October 07, 2008 at 03:10 AM CEST #

Ace, thanks for the explanation.

Posted by Ceri Davies on October 07, 2008 at 01:56 PM CEST #

Post a Comment:
  • HTML Syntax: NOT allowed
About

joachimandres

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today