I'm not sure the totality of your requirements, but you might have a look at
Pubcookie, an open-source production of the great University of Washington
in Seattle. The project includes modules that plug into IIS (an ISAPI
filter) and Apache, so you are not bound to one platform. If you have a
mechanism for keying people uniquely, Pubcookie should be able to enforce
identity reliably. Client server machines plugging into the system are
positively identified to the mother ship (the keyserver for the works) by
cert.
See here:
http://www.pubcookie.org/ http://en.wikipedia.org/wiki/Pubcookie
I have nothing to do with the development of Pubcookie, but I have
implemented it on several UW servers and have found it simple and reliable
once setup is complete. The developers for the project are actively
iterating things and seem pretty darn smart to me.
-KF
"Spam Catcher" <sp**********@rogers.comwrote in message
news:Xn**********************************@127.0.0. 1...
Hello Everyone,
I need to implement single sign on across serveral applications. Some
applications are under my control while others are under the control of
3rd
parties.
Can anyone suggest a good SSO solution?
We'll be primarily integrate .NET sites - but Java/PHP/etc are not out of
the question either. Our authentication store will be a database - but in
the future we may use LDAP or Active Directory.
Sites may authenticate against different databases - what I mean by this
is
that one server may host multiple applications, each application has it
own
authentication criterias.
Applications are hosted locally as well as remotely - perhaps under
different domain names too.
Any good suggestions? I've used Sun One Identity, but it seems to be
overkill for us and it wasn't very reliable.
Any other products you guys can recommend?
Thanks!