I have done BO XI R3 Windows AD and SSO configuration with Weblogic 9. I have given the right of "Trust this user for Delegation" for the service accounts. The client is concerned about this rights given to this (service account) user for security reasons. I know as per the Documentation this right should be given for the Service Accounts. Has anybody tried SSO without giving "Delegation" rights to the Service Account? Does it work?
I believe that for Authenticating Windows AD (without SSO), the service account does not require the "Delegation" right. (Tim expecting a response from you)
Thanks in Advance