![]() ![]() ![]() įor clarity, a distinction is made between Directory Server Authentication (same-sign on) and single sign-on: Directory Server Authentication refers to systems requiring authentication for each application but using the same credentials from a directory server, whereas single sign-on refers to systems where a single authentication provides access to multiple applications by passing the authentication token seamlessly to configured applications.Ĭonversely, single sign-off or single log-out ( SLO) is the property whereby a single action of signing out terminates access to multiple software systems.Īs different applications and resources support different authentication mechanisms, single sign-on must internally store the credentials used for initial authentication and translate them to the credentials required for the different mechanisms. Ī simple version of single sign-on can be achieved over IP networks using cookies but only if the sites share a common DNS parent domain. It should not be confused with same-sign on (Directory Server Authentication), often accomplished by using the Lightweight Directory Access Protocol (LDAP) and stored LDAP databases on (directory) servers. True single sign-on allows the user to log in once and access services without re-entering authentication factors. Single sign-on ( SSO) is an authentication scheme that allows a user to log in with a single ID to any of several related, yet independent, software systems. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |