I'll Get My Coat
Identity Management? I'll Get My Coat...
Sun Secure Global Desktop and OpenSSO Integration
A close colleague of mind, Joachim Andres , myself and Andy Hall worked together on a customer project to setup web SSO integration using OpenSSO with Sun Secure Global Desktop. This work we did is a great example of the use of policy agents with existing applications and using trusted authentication mode with SGD (with Directory Services Integration configured for SGD in the background). The policy agent sets the REMOTE_USER
server variable and SGD is configured to pick that up rather than use
its own login page. With that, and a tweak to SGD's logout logic to
send the browser to OpenSSO's logout page, we have a very neat
integration. Download the document that Joachim wrote here
Today's Page Hits: 70
Contact
www.flickr.com
|
Disclaimer I work at Sun Microsystems. The opinions expressed here are my own, and neither Sun nor any other party necessarily agrees with them.
Blogging Calendar
| « November 2009 | ||||||
| Mon | Tue | Wed | Thu | Fri | Sat | Sun |
|---|---|---|---|---|---|---|
1 | ||||||
2 | 3 | 4 | 5 | 7 | 8 | |
11 | 12 | 13 | 14 | 15 | ||
17 | 18 | 19 | 20 | 22 | ||
23 | 24 | 25 | 26 | 27 | 28 | 29 |
30 | ||||||
| Today | ||||||
For everyone who wants to know, almost the same procedure can be followed the older Sun Access Manager and other Access Manager technologies.
In fact all techniques which can set the REMOTE_USER variable (like Apache Basic Authentication, mod_radius) can be used for the SSGD Web Authentication.
This document is very good and extensive :) A nice one to turn into an SSGD HOWTO on http://wikis.sun.com/display/SecureGlobalDesktop/HOWTOs .
Thanks for this post Paul :)
Posted by Remold on October 02, 2008 at 11:34 PM CEST #