To
provide web based stuff you're looking for then we're in the middle of
implementing Novell iChain - we run both NDS and AD, but I'm told it can be
installed against either (or any LDAP v3 directory).
Basically it's a reverse proxy that sits between you and the web server,
when it sees the web server requesting authentication it can fill in the
dialogs/forms and return them to the server without the client ever seeing them.
You'd probably need MMS (or similar) as well though to get the usernames and
passwords synced.
cheers
dave
-----Original Message-----
From: Sharma, Shshank [mailto:[EMAIL PROTECTED]
Sent: 05 June 2003 18:32
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] Single sign-onRight, sure that's the context I was thinking about.So, what are people typically doing, getting some stuff like this, and then cobbling together a single sign-on solution unique to themselves ? Or are there more generic tools out there, ofcourse ones which cost more and make life more easier ?-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 05, 2003 7:49 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Single sign-on
BTW MMS does not strictly enable single sign ons. It is a meta directory and it can enable the synchronization of directory information across different systems, including in most cases usernames & passwords. However even with the same username and password on different systems a user may very well be required to sign on multiple times (using the same credentials). True Single sign on can be very complex (not that a meta-directory with provisioning isn't!)
