• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

Thick client SSO - any such thing?

 
Greenhorn
Posts: 5
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Is there any technology that supports SSO for thick java clients connecting to a J2EE application server via RMI/IIOP? Our thick client makes EJB calls to the server and uses JMS to listen for events on topics. The server (WebSphere) authenticates using LDAP.

A customer wants to have our thick client pick up the local (Windows or unix) user credentials and use them to logon to the server without prompting the user for ID or password. Kerberos has been mentioned as a possible enabler for something like this.

Is such a scenario feasible? Is there existing technology and support for this?
 
Ranch Hand
Posts: 242
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Have you considered Federated SSO using SAML and Public/Private keys?

In this scenario, the thick client uses its private key to create a saml assertion and sends the request to the server. Server would confirm the assertion using client's public key and grant access.
 
Always! Wait. Never. Shut up. Look at this tiny ad.
a bit of art, as a gift, that will fit in a stocking
https://gardener-gift.com
reply
    Bookmark Topic Watch Topic
  • New Topic