SQL Server has an option to use integrated authentication, it works well in most situations. Extranets or public internet sites would be one area where you would probably not want to use that option.
| "Sharma, Shshank" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED] 06/06/2003 01:15 PM
|
To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]> cc: Subject: RE: [ActiveDir] Single sign-on |
> To provide web based stuff you're looking for then we're in the middle of implementing Novell iChain - we run both
> NDS and AD, but I'm told it can be installed against either (or any LDAP v3 directory).
Web-based stuff, yes. But I am looking at apps that dont necessarily use a directory service (such as NDS or AD). The apps typically have thier own databases (Oracle, SQL Server et al.), and they manage authentication and authorization individually.
The goal to do all that in a single entity is claimed to be simplified using tools such as P-Synch and Simple Synch, though I would love to hear from someone who has used something like that.
BTW, this group looks a great place to be. Kudos, all !
./Shshank
-----Original Message-----
From: Sharma, Shshank [mailto:[EMAIL PROTECTED]
Sent: 05 June 2003 18:32
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] Single sign-on
Right, sure that's the context I was thinking about.
So, what are people typically doing, getting some stuff like this, and then cobbling together a single sign-on solution unique to themselves ? Or are there more generic tools out there, ofcourse ones which cost more and make life more easier ?
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 05, 2003 7:49 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Single sign-on
BTW MMS does not strictly enable single sign ons. It is a meta directory and it can enable the synchronization of directory information across different systems, including in most cases usernames & passwords. However even with the same username and password on different systems a user may very well be required to sign on multiple times (using the same credentials). True Single sign on can be very complex (not that a meta-directory with provisioning isn't!)
