Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [single-sign-on]

Single Sign On is a technology that allows a single login to be transparently used with multiple applications and environments.

Single Sign On (SSO) is a technology that allows the transparent use of a single username and password in multiple security domains. They're commonly used as part of a greater framework which unites otherwise separate systems into a single virtual login domain. SSO systems may be purely web-based, or client-based.

A variety of technologies can be used to build SSO systems.

347 questions
0
votes
1 answer

Reverse Proxy single sign-on

I have a reverse proxy handling ssl termination and mod_security. The issue is after sso reaches the backend server it tries to authenticate with cas directly instead of the through the proxy still, and since the backend server is inside our…
Rory McDonald
  • 61
  • 3
0
votes
1 answer

Kerberos SSO virtualhost different domain

I have a running centos6.6 server who authenticates against a windows 2008 AD with realm EXAMPLE.LOCAL. I have successfully configured an apache webserver for authentication through kerberos keytab file. The name of the server is…
Andries
  • 1
  • 1
0
votes
0 answers

IBM WebSphere Application Server SSO sets REMOTE_USER incorrectly on Cognos BI 10.2.1

I am running IBM Cognos Business Intelligence Server 10.2.1 (no other extra software products) on WebSphere Application Server 7, both softwares on an AIX server. I am trying to configure LTPA SSO through basic HTTP authentication from WebSphere to…
RAKK
  • 151
  • 1
  • 8
0
votes
1 answer

AD password for LDAP users

My company has a central Active directory server and our team has its own OpenLDAP server for managing infrastructure. I would like to use the same password for our ldap users as the password in AD. How can I pass requests for certain attributes…
Andrew Meyer
  • 253
  • 1
  • 4
0
votes
1 answer

Have ADFS 2 Prompt for Username Password

Scenario: User is at a generic workstation and needs to access a 3rd party application that is federated using ADFS 2.0. when user accesses the website it tries to auto login using the generic user that is logged into the workstation. Generic users…
gkalltheway
  • 1
  • 1
0
votes
1 answer

ADFS only allows local browsers and Safari on one Mac to access the verification webpage

So I've setup a Windows 2012 R2 box with AD DS, SQL Server, and AD FS so one of our developers can test out SSO. The problem is, the test webpage, https:///adfs/ls/idpinitiatedsignon, only works locally on the server or on Safari on my Mac, where I…
bga14
  • 1
0
votes
1 answer

Is there a way to change which wireless network is connected to when authenticating windows 7 AD clients using single sign on over wifi?

The situation: Two domains. Two wireless networks. Each domain's users have their own network for security reasons. B is a child domain of A (A = domain.com, B = child.domain.com). Users in domain B cannot connect to A's wifi. Users in domain A…
Bob Tahakin
  • 1
  • 1
0
votes
2 answers

Apache/mod_auth_gss authentication failure

Sorry if this is the wrong stackexchange site for this. Based upon the documentation (for reference I also used this blog post) I have this in httpd.conf: # Increase max size of HTTP request headers so we are sure it can hold any SPNEGO…
Dr.Avalanche
  • 133
  • 1
  • 1
  • 13
0
votes
0 answers

Kerberos Authenticator Encryption Type NULL

So, I've been working on a SSO enabled XMPP application on our network for a couple weeks. I have 95% of the bugs worked out, and everything is running smoothly. The problem is that I have a couple machines that are not connecting, giving me the…
Jonathon Anderson
  • 288
  • 1
  • 3
  • 10
0
votes
1 answer

JBoss - Not working the next day

We are having a problem, our JBoss EAP 6.3 cluster (2 nodes in domain mode + Apache) on a Centos OS, is not working after a period of inactivity (night). Its connected to an ldap. We do login, timesout and get Service Temporarily Unavailable, then…
Mateo
  • 11
  • 4
0
votes
1 answer

Configuring kerberos/ntlm single signon with apache and sssd

What is the proper/cleanest way of setting up apache to support SSO using NTLM, or preferably Kerberos, with CentOS7 running sssd connected to an Active Directory domain controller? With realmd, joining the domain is now real easy, but I was unable…
Morten Nilsen
  • 318
  • 5
  • 15
0
votes
0 answers

Smart Card Logon & next hop SSO RDP Login

I started to expriement with smart card based login. So far I can logon to my local PC using my smart card. What doesn't work is using sso when connecting via RDP to another server. I get the error message "Der Anmeldeversuch ist fehlgeschlagen"…
Jonathan
  • 575
  • 1
  • 7
  • 18
0
votes
1 answer

Intranet AD login for External Website

Is it possible to setup a website on the internet such that it does a Single Sign for people coming from intranet Active Directory logins? If this is possible, are there any products/tools which help setting this up? I have an external website for…
user93353
  • 287
  • 1
  • 6
  • 17
0
votes
0 answers

Browser (SPNEGO) kerberos authentication on Windows Phone 8 IE

Is there a way to make Internet Explorer on Windows Phone 8 authenticate to a site using Windows Integrated Security Authentication with Kerberos through the Negotiate (SPNEGO) protocol? It seems to support Negotiate fine, but it only ever chooses…
Aardvark
  • 109
  • 3
0
votes
1 answer

Citrix Netscaler 10.1 AAA Application Traffic Single Sign On

I have a Netscaler deployment with a virtual server where I have enabled authentication through the AAA Application Traffic feature. As Expected this allows my users to log on to the netscaler login prompt once and then have sso work for all…
Canis
  • 87
  • 10
1 2 3
23 24