SSO available options?

Hello,

After doing some research on the various types of SSO available in XI R2, I still have some confusion as to what is an option for us.

We have a .NET application we're looking to integrate BOXI reports in through URL reporting (no signon, otherwise we'd just use standard openDoc). I think the fact that we use Enterprise authentication in our BOXI environment rules out AD / NT SSO, leaving us with the option of implementing Trusted Authentication. Since our application login IDs don't match our BOXI Enterprise IDs, I think this rules out TA as a solution as well!

Are there any SSO options I'm overlooking? At this point I'm thinking the only thing that will work is a custom solution using a lookup table to map our application IDs <-> BOXI IDs, and this isn't really a route I want to go.

Any help appreciated - thanks......