Security - Single Sign on (SSO) - (Trusted sign on|Multi-Domain Security)

> Software Security > (Authentication|Access control|Identification) - AuthN

1 - About

SSO, trusted sign on.

Single Sign-On is the ability to require a user to sign on to an application only once and gain access to many different application components, even though these components may have their own authentication schemes. Single sign-on enables users to login securely to all their applications, web sites and mainframe sessions with just one identity.

Advertising

3 - and Application Interaction

If there is SSO authentication than the user session is controlled by SSO and not by the application. The SSO system is expected to dictate the timeout. The login is controlled by the SSO. Normally you need to be using the same time-out setting for the application and SSO provider.

4 - Third Party products

  • CA SiteMinder
  • Java SSO
  • Oracle Access Manager

5 - Documentation / Reference

security/auth/sso.txt · Last modified: 2019/04/25 22:50 by gerardnico