Sorry for the late reply on this, not sure how I didn't see it before now. I implemented SAML SSO here at Sony in a against a global authentication system.
1. Remedy OnDemand SaaS (hosted in Phoenix CapGemini) 2. VPN tunnel to our data center at a remote location 3. Appropriate holes punched to our corporate center in another location as they are the keeper of the domains. Our folks have to be on the Sony network (VPN or local) to be authenticated and I asked Remedy OnDemand to filter all non-Sony web traffic out as well to prevent folks from attempting public brute-force or similar probes. If I can be of further help, hit my work email, not reply on ARS List. [email protected] _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org "Where the Answers Are, and have been for 20 years"
