> Can you please eloborate on why consolidating the userbase is a requirement?
It's not strictly a requirement, but I stated so for the sake of simplifying the discussion in this case. > Can't we always have multiple user databases and multiple authentication > handlers as long as we externally make sure that the unique ID to identify > the users are not duplicated across DBs? Yes, you can do this. However, I believe it's fundamentally difficult in practice for systems that do not have a direct relationship; at the least the systems should be coupled via a reconciliation tool that enforces uniqueness at account creation and for account changes; a periodic audit check is also wise. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
