On 04/27/2012 04:01 AM, nm_santos wrote:
Does Lenya support SSO with Active Directory?
I can't find any relative information about it, only something about
Shibboleth, but no guide or examples.
Thanks in advance,
Nuno Santos.
Technically no. SSO (especially when used next to Shibboleth) refers to
Single Sign On, meaning that logged in sessions are shared. AD can share
sessions in a Windows environment, but that doesn't translate to the
web. True SSO technologies are Sibboleth, CAS, SAML, etc. For example,
if you log into Gmail, that login session is carried forward to Google
Code.
If you are referring to SSO as a single username and password that one
can use everywhere, then yes it can. You need to search for the
underlying technologies to find it. Lenya can do LDAPS authentication.
That is what you're going to want to look at doing.
It's been an exceptionally long time since I've looked at it, and when I
did, I actually used it as a basis for doing Kerberos authentication
(the LDAP piece was for identity translation).
There is documentation up on how to do it in Lenya 1.2. Everything there
looks to be mostly correct for use against 2.0.
http://lenya.apache.org/docu12x/howtos/ldapauthentication.html
The first few steps do have a couple of substitutions. It's no
access-control instead of ac, and access-control.xml instead of ac.xconf.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
