AAAA Identity Services in OpenSSO

There have been great strides in the OpenSSO community and one of the areas I am particularly proud of is the addition of identity services. Applications that authenticate end users using identity services can securely pass their attributes to OpenSSO without the need of an agent or labor-intensive kit. Identity Services can be invoked using REST or WSDL interfaces in the IDE of your choice. This means no agent is required to protect a resource. The identity services in OpenSSO (and available in our Spring release of Federated Access Manager 8.0) include:

\* Authentication — Verification of user credentials

\* Authorization — Permission for authenticated users to access secured resources

\* Attributes — Collection of the profiles of authenticated users

\* Audit Log — Ability to audit and record operations

Below is an example of the authentication identity service being invoked using Netbeans. This service is IDE agnostic and can also be used in Eclipse and Visual Studio.

If you're interested in exploring this functionality download OpenSSO and begin playing today. Also, Aravindan Ranganathan, one of our talented software architects at Sun, wrote a nice technical article titled Securing Applications With Identity Services, Part 1: Authentication. He will be publishing three more technical articles on the remaining services shortly - Authorization, Attributes, and Audit Log.

Comments:

I don't understand

Posted by chirles on November 10, 2007 at 04:42 PM PST #

Has AAAA to do something with IPv6 in OpenSSO or are we introducing another overloaded acronym ?

Posted by Vladimir Kotal on November 10, 2007 at 10:05 PM PST #

AAAA = AuthN, AuthZ, Atributes and Audit

Posted by Daniel Raskin on November 12, 2007 at 02:29 AM PST #

Chirles, Basic jist is we have a SSO solution that doesn't require any agents or proxies. All services can be invoked using web services. The developer does not need to know anything about Sun's Access Manager. All they need to know is how to invoke the access management web service via the IDE of their choice. It works with ant Java or C++ application. Pretty cool!

Posted by guest on November 12, 2007 at 02:39 AM PST #

Post a Comment:
  • HTML Syntax: NOT allowed
About

Read my extraordinary thoughts about the world of identity and access management. As an identity child prodigy, I have much to say about these subjects.

Search

Categories
Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today