Has anyone been able to set up PKI Authentication for users who access the system (ARS 7.01) using the Windows Clients (User/Admin)?
We know we can configure our Web Server to do our PKI (Certificate) authentication for us, then customize the .properties file, etc, to set up SSO (using the new 7.x documentation for this). Our plan is to handle all of the Web authentication outside of ARS, and assume if the user made it past the Web Server (BEA WebLogic)'s Certificate checks, the user is ok. We just authorize based on the User dn= we get from the header. Where we're having issues now is in terms of having "strong" authentication for users on the Windows clients. We have users who will need access to the system that way (because the Web, no matter "how much better" the 7.x Mid-Tier "is" aka "is supposed to be"), not to mention our Admins who will need to use the Admin tool. IT Security is telling us that anyone with Admin access must use "Strong Authentication", or in other words, PKI. LDAP Authentication just isn't going to cut it with them. Any thoughts? Sincerely, Rebecca Hammond __20060125_______________________This posting was submitted with HTML in it___ _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org ARSlist:"Where the Answers Are"
