- For example, a user logs on to her workstation, then
decides to access a company database
Typically, the database would require another
With centralized authentication, this authentication process is different. Using the example above, logging on to the database isn't transparent; the user would have to enter her authentication information again. However, the required credentials would be identical to the credentials she used to log on to her workstation. Centralized authentication
http://windowsitpro.com/networking/sso-vs-centralized-authentication
- The Central Authentication Service (CAS) is a single sign-on protocol for the web
Its purpose is to permit a user to access multiple applications while providing their credentials (such as
It also allows web applications to authenticate users without gaining access to a user's security credentials, such as a password.
http://en.wikipedia.org/wiki/Central_Authentication_Service
- Central Authentication Service project, more commonly referred to as CAS.
CAS is an authentication system
CAS provides enterprise single sign-on service:
http://www.jasig.org/cas
FreeIPA is an integrated security information management solution combining Linux (Fedora), 389 Directory Server, MIT Kerberos, NTP, DNS,Dogtag (Certificate System). Itconsists of a web interface and command-line administration tools.
https://www.freeipa.org/page/About
- cookie-based SSO
share the user logged in across multiple applications using only a cookie on the browser
When the user authenticates on site-a.com, you set a cookie on site-a.com domain. Then on site-
I have seen custom SSO solutions that transmit the payload using XML over HTTPS.
https://stackoverflow.com/questions/1784219/cookie-based-sso
No comments:
Post a Comment