Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [single-sign-on]

Single Sign On is a technology that allows a single login to be transparently used with multiple applications and environments.

Single Sign On (SSO) is a technology that allows the transparent use of a single username and password in multiple security domains. They're commonly used as part of a greater framework which unites otherwise separate systems into a single virtual login domain. SSO systems may be purely web-based, or client-based.

A variety of technologies can be used to build SSO systems.

347 questions
0
votes
1 answer

kerberos request ticket server not found in keytab

TL;DR First: my server name is xy. Second: the domain I logon to is EXAMPLE.COM Third: this is my apache configuration AuthType Kerberos AuthName "Kerberos Login" KrbServiceName HTTP …
CDRO
  • 1
  • 1
  • 4
0
votes
1 answer

Is ADFS for internal CRM necessary if we already have an SSO for internet facing services?

I never had to deal with ADFS until now so not sure if I get it correctly. We will have an implementation of Dynamics CRM inside our network soon and we already use F5 Big-IP APM for SSO with other applications. Do someone know if we can just use…
Steauxback
  • 1
0
votes
2 answers

Steps for troubleshooting Windows ADFS issue

Yesterday I posted a specific question about an error I'm getting in ADFS that has me stumped. Because I have very limited experience troubleshooting windows based products, I think advice on how to approach the problem would be very helpful. How…
blur0224
  • 128
  • 1
  • 10
0
votes
1 answer

Trouble activating Single Sign-On (SSO) on Trial subscription to Oracle Cloud

everybody First, I am not sure I am really on topic here, but Oracle's own "cloud" support and community forums are not helpful (they get very little traffic and there were no responses yet). Maybe somebody over here has experience with Oracle's…
Alexey Dolganov
  • 13
  • 6
0
votes
1 answer

how to add my google apps accounts to Active directory Federation service?

Note - There are many discussions about syncing Google app accounts to Active directory. This is a different question - I would like my users (about 10) on google app to login to my local web apps i.e. gitlab / gerrit / jenkins using their google…
Gautam
  • 99
  • 3
0
votes
1 answer

firefox fails to pass ntlm to apache2 running authenntlm on Centos 5.1

We are trying to get an application server that is running apache2 on centos 5.1 to use NTLM to provide SSO to a number of applications. We can get SSO to work with IE, however SSO fails with firefox. We have updated the NTLM trust entry in…
Grant Collins
  • 159
  • 2
  • 9
0
votes
0 answers

Research ideas related to Distributed Single Sign on Systems(ADFS) ?

I'm going to do a research related to Security in Distributed Single Sign On system. Then i came up with the idea of implementing federated security using the LDAP and Kerberos as in following figure. Architecture Do you think there are any value…
Sameera Kumarasingha
  • 101
  • 1
0
votes
2 answers

gssapi/kerberos/active directory/ubuntu - Wrong principal in request

I'm trying to setup a Clientserver with a Webservice to which Users of an Active Directory should be able to login with SSO. I'm using SPNEGO with Kerberos on a Ubuntu 14.04 Server and nginx proxy to Naviserver for the Webservice to do that and get…
Sky
  • 11
  • 3
0
votes
1 answer

Apached + Siteminder issue

I am experiencing some very slow longin issue in my server that provide a single sign-on via Siteminder. After looking at the log. I can see the following: [15/Dec/2015:16:47:09] [Info] [CA WebAgent IPC] [2812] [CSmIpcEvent::WaitForEvent] Time-out…
MaatDeamon
  • 209
  • 3
  • 12
0
votes
1 answer

Imitate Azure AD user/tenant claims within ADFS

I have a .Net web application that allows users to hook up their account with an identity provider (Azure AD, Google, and/or ADFS) to allow single sign-on. On hooking up their account (or "on-boarding", whatever...), each provider should return…
EvilDr
  • 164
  • 1
  • 2
  • 16
0
votes
2 answers

ADFS and Shibboleth: Controlling behavior of Windows authentication

We are doing SSO using ADFS and Shibboleth SP. In a perfect world, Windows authentication would always work, i.e., the user accesses https://shibboleth/Login?target=somewhere, is redirected to https://adfs/adfs/ls/SomeSamlRequest, the browser…
Julian B
  • 33
  • 1
  • 4
0
votes
1 answer

Single Sign On with multiple Identity Providers from PHP web app

I'm building a SAAS web app in PHP that needs to integrate SSO. We'll have multiple client organizations, each that have their own Identity Provider (Active Directory). While researching possibilities, I came across SimpleSAMLphp, but I'm not sure…
webaholik
  • 123
  • 8
0
votes
1 answer

Linux LDAP to Ldapadmin configuration issues

I'm learning how to setup and use OpenLDAP installed on an Ubuntu server. I executed sudo apt-get install slapd ldap-utils -y and set my ldap domain to test.mydomain.com. I can execute ldapadd successfully to add people via that domain. So, I'm…
sisko
  • 165
  • 1
  • 8
0
votes
0 answers

JBoss EAP 6.3 - SSO and Sticky Sessions not working

We have a cluster with 2 nodes (JBoss EAP 6.3 with Single Sign On enabled), node 1 and node 2 in different servers. On top of that we have an Apache2 and are using mod_cluster for load balancing and sticky sessions. We also have our web apps with…
Mateo
  • 11
  • 4
0
votes
2 answers

Apache 2.2 mod_auth_kerb SSO stopped working

I'm all out of ideas why has it just stopped working, here's what I checked: httpd-error.log: [Thu Jun 11 18:04:21 2015] [debug] src/mod_auth_kerb.c(1758): [client 10.105.5.131] kerb_authenticate_user entered with user (NULL) and auth_type…
pupkinsen
  • 113
  • 2
  • 10
1 2 3
23 24