Single Sign-on

Monday, August 05, 2002

Standards

WS-Federation

WS-Federation Standard was begun by Microsoft and IBM. Current members include Netegrity Inc., Oblix Inc., RSA Security Inc., BEA Systems Inc., OpenNetwork Technologies Inc. and Ping Identity Corp.

Liberty Alliance

Liberty Alliance is supported by Sun Microsystems, United Airlines, American Express, Fidelty Investments, MasterCard and General Motors among many others. Integration - Portal and otherwise As of 2000 Vignette uses Netegrity SiteMinder for Single Sign-on. PlumTree offers their own system. Websphere uses tivoli. I haven't determined if BEA offers their own solution or relies on a third party. The portal will not be responsible for authenticating users. The authentication will take place before users get to the portal server, so the portal server must accept identity credentials from the SSO server. The SSO server will also provide identity solutions for third party products. This means that the SSO server must be able to provide identity credentials in a format that the third parties can intepret. The first third party product that will be integrated is Arsenal Digital. Users identity information will be stored in active directory for the forseable future. The SSO server must, therefore, be able to retrieve identity information from an LDAP resource. -----