[thelist] cascading authentication
Ken Schaefer
Ken at adOpenStatic.com
Wed Aug 23 18:45:53 CDT 2006
: -----Original Message-----
: From: thelist-bounces at lists.evolt.org [mailto:thelist-
: bounces at lists.evolt.org] On Behalf Of John DeStefano
: Subject: [thelist] cascading authentication
:
: Here's a relatively simple query regarding a more complex problem: say
: a pool of users log in to different systems via various different
: authentication methods, including grid certificates, Kerberos, LDAP,
: BasicAuth... is there an existing technology that can manage those
: users via some sort of cascading authentication method? For example,
: if a user presents a grid certificate, that user is authenticated; if
: not, a Kerberos token is sought and checked; if not, an LDAP password
: is checked; etc.
:
: Is it possibly in any way to unite users with such diverse
: authentication methods, without forcing adherence to a single method?
Perhaps you a looking for an SSO (Single Sign On) solution. Rather than
asking for multiple types of credentials, the user presents what they
normally present. However the SSO system is the capable of creating tokens
(typically cookies) which the other systems will accept.
Cheers
Ken
More information about the thelist
mailing list