Hi Listers, I read BMC white paper titiled, "Integrating BMC Remedy ARS with SSO Authentication Systems and Other Client-Side Login Intercept Technologies", where it talks about how to implement SSO. SSO as I understand it means that the application will login using the user's windows credentials once the user clicks on it.
However, after trying out the codes, it seems what BMC are proposing is just an intercept to the Login i.e. When you login a dll will run to pick up the username\password and pass it to Remedy. This means that in the intercept we will be able to capture the username, but no password. The password has to be somehow be "calculated" in Remedy as well as in the intercept DLL, which is sort of hard coding the passwords. As far as security goes, I understand why the windows password is tightly guarded, but I am wondering how do other application using windows SSO and why can't Remedy do that? Regards, Emad _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org ARSlist:"Where the Answers Are"
