|
-
Mar 6th, 2006, 11:59 AM
#1
Re: Single Sign On Implementation
1. When you use Windows Authentication on an app, they are automatically authenticated with the network.
Now you have two options. On the page that links to all the in-house apps,
a) You can simply create a link to each of those apps
b) You can have Windows Authentication enabled on YOUR page, and, when sending the user to the other apps, you pass their windows authentication information so that they needn't login again there. This way, the credentials are passed to those apps, yes, and THOSE apps check security levels, etc., etc.
What do you think now?
-
Mar 6th, 2006, 12:18 PM
#2
Thread Starter
Addicted Member
Re: Single Sign On Implementation
I think its getting late on a Monday afternoon and my head hurts 
On a serious note, the second option mentioned seems to be preferable. If i pass the details through to the apps and let them deal with their own security. Using this method i'm still not able to hide the apps that certain users haven't got rights too.
I'll have to give this thought as to how to implement the system but your help has put things into perspective.
The only query i would have now, and i never mentioned this previously. If at any point a serious change to data is made in one of these systems, a user is required to digitally sign the chnage off. This involves them authenticating themselves again.
Initially i had thought with the web control suggestion i could just drag it on to the sign-off page. This isn't a major problem at present but one i'll have to look at eventually.
You've been a great help on this. Thanks, and no doubt i'll post again on this matter
Grant
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|