cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

RSA and SPNEGO

Go to solution
Former Member

on ‎02-11-2007 7:34 PM

0 Kudos

Hi -

As part of one of our projects - We actually configured RSA authentication using the SI JAAS Module in the EP 7.0 Environment- and it worked successfully. Now, as next step, we are trying to configure the Portal for Single Sign On within the Network - via SPNEGO. Do you forsee any issues/customization or will it work without glitches? Any suggestions?

Let me know.

Thanks.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

darren_hague
Contributor
‎02-12-2007 3:57 PM
0 Kudos

Mayur,

If you construct the JAAS stack correctly, you should be fine.

You probably want:

EvaluateTicket - sufficient

SPNEGO - optional

CreateTicket - sufficient

RSA - optional

CreateTicket - sufficient

Basic - Requisite

CreateTicket - optional

The idea here is that CreateTicket only succeeds if there is a valid user in the context - so having CreateTicket as sufficient down the stack means that as soon as one of the (optional) modules above populates a valid user, a ticket is created and the stack is exited, all the way down to the usual Basic/CreateTicket pair at the bottom, which is your fallback username/password authentication.

Hope this helps,

Darren

<a href="http://www.fortybeans.com/">Read my blog</a>

Show replies
Show replies

Answers (0)

Ask a Question