Romain, For SSO to work you need a SSO Server ( which is a Ja-Sig CAS server) and a client which can talk in CAS protocol, if you have all your systems inside firewall you can very well use CAS server - because CAS clients need to talk to CAS Server. But CAS Server also supports multiple protocols to help you here - you can have plugins into cas server which can support SAML and CAS together.
For example - I work with ThoughtWorks and we have SSO implemented for TW CAS Server for their RubyOnRails product called Mingle and we also needed to integrate that with Google Enterprise account for our hosted GMAIL solution, which supports SAML. So I ended up using CAS + SAML plugins in my cas server and it works very well.. So I think you can start with CAS, then if you need any help with that please post questions on this mailing list. Ajey On Sun, Jul 24, 2011 at 5:50 PM, Romain Griffiths < [email protected]> wrote: > Hello everyone, > > I am working in a large company. > We would like to adopt a Web SSO protocol. > For now we have no previous SSO technology. > > There is so much protocols around WebSSO (CAS, OpenID, OAUTH, SAML, etc) > that it's hard to understand their perimeter and choose between competing > technologies. > > We want to choose a technology that is suitable for our current need (SSO > between 2 web sites with 1 000 000 users/month) and also a technology that > will be supported broadly supported in the future. > > What would be your analysis of the state of WebSSO protocols ? > > Should I start using CAS (with jasig-cas) or should I use OpenID (with > openid4java) ? > > SAML seems to be the next big thing, should I directly jump into SAML with > Shibboleth or wso2 ? > > Thanks for your time. > > Romain Griffiths > > > > > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
