If you already Trust your Client.. because it is Force to be on the domain and that is fine.. then what you can do instead is to use an ldap authentication.. that has an escalation that imports all AD customers into Remedy Userform.. at the same time embed a Special password into the userform with it.. (you might want to exclude your licensed customers) and then make the JSP - as autologin, with a ldap verify, and the embedded Remedy password.
This is one solution I have seen and tested .. and works.. just not very .. Huhummm.. Kosher.. On 10/10/06, Keats Kirsch <[EMAIL PROTECTED]> wrote:
If your client doesn't already have a Web SSO solution in place then they would need to set up one first. There are free and commercial products available, but it is a non-trivial exercise. Once you have that, you need to configure the mid-tier to forward the SSO credentials (in 6.x you use a custom Java authenticator class for this.) and develop a custom AREA plug-in for Remedy to validate them. We have done this using CA's SiteMinder Web SSO. Modifying the sample C++ application was fairly straightforward. Hope this helps. Keats Jason Tuomy wrote: > I'm looking to implement a Single Sign On via mid-tier. I searched the > archives but couldn't find any details. My customer is wanting to be able > to point a user to the mid-tier and get them past the authentication > without requiring the user to login. > > This would mean to somehow get their login and password credentials from > their windows environment or something and pass it to the mid-tier and set > the user directly to where they need to be. > > I found that there are plenty of SSO software out there that will get some > form of this data and put it into some kind of HTTP token that I could > then retrieve (via White Paper) and pass to mid-tier. > > I was wondering if I have to have SSO software or is there some way to do > this without purchasing software. Again, my customer doesn't want to have > the user do a login/password process to get to mid-tier. So, using LDAP > doesn't seem to be the right process. Unless I can retrive the password > and store it locally. > > Any help would be greatly appreciated. Thanks. > Jason Tuomy > > _______________________________________________________________________________ > UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org
-- Patrick Zandi _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org
