Presentation is loading. Please wait.

Presentation is loading. Please wait.

Teamcenter™ Security Services SSO

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "Teamcenter™ Security Services SSO"— Presentation transcript:

1 Teamcenter™ Security Services SSO
Dennon Ison Software Engineer Template # 99-P34884K, Rev E – 3/17/08 © 2008 General Dynamics.  All Rights Reserved.

2 © 2008 General Dynamics. All Rights Reserved.
Objective Explain how General Dynamics C4Systems implemented a no-challenge login using the Teamcenter Security Services™. © 2008 General Dynamics.  All Rights Reserved.

3 © 2008 General Dynamics. All Rights Reserved.
Outline The CIO Challenge Terminology/Definitions Teamcenter Enterprise™ Login Architecture The Options The Solution Our Environment Considerations Questions © 2008 General Dynamics.  All Rights Reserved.

4 © 2008 General Dynamics. All Rights Reserved.
The Challenge Implement a non-challenge SSO solution for the Teamcenter™ suite of products. Solution must have IT Networking acceptance/support Solution must have IT Information Security acceptance/support Solution must work with existing assets and resources © 2008 General Dynamics.  All Rights Reserved.

5 © 2008 General Dynamics. All Rights Reserved.
Terminology Authentication: Who the user really is Authorization: What the user is allowed to do SSO: A non-challenge login to systems after the user has been authenticated on the network domain Teamcenter Security Services (TCSSO): Web-based application that maintains a central login for all Teamcenter applications LdapAuth: Allow Enterprise users to login with their network login account © 2008 General Dynamics.  All Rights Reserved.

6 Login Architecture (Enterprise)
With TCSSO With LdapAuth Prompt for Credentials © 2008 General Dynamics.  All Rights Reserved.

7 © 2008 General Dynamics. All Rights Reserved.
The Options Internet Information Services™ (IIS) Network recommended Quick Need to use multiple machines to redirect Security “disliked” the idea Move web tier to windows Resolve security issue Still use IIS Lack of windows machines Lack of “team comfort” JBoss™ LDAP Authentication Limited customization Significant setup Lack of experience © 2008 General Dynamics.  All Rights Reserved.

8 © 2008 General Dynamics. All Rights Reserved.
The Options Apache™ LDAP Authentication Limited customization Significant setup Lack of experience Java Authentication and Authorization Service (JAAS) Java based (any platform) Web service Customization Changes to AD © 2008 General Dynamics.  All Rights Reserved.

9 JCIFS (Java Common Internet File System)
The Solution JCIFS (Java Common Internet File System) ( Validated against AD with Kerberos protocol All “open” credentials are kept in the same “container” (jvm) Works on any platform Should work on any J2EE java application server Only handled authentication of user, did not give Teamcenter Credentials © 2008 General Dynamics.  All Rights Reserved.

10 © 2008 General Dynamics. All Rights Reserved.
The Solution Configure Security Services Add JCIFS Filter to web.xml Modify PreLoginPage.jsp © 2008 General Dynamics.  All Rights Reserved.

11 © 2008 General Dynamics. All Rights Reserved.
The Solution JCIFS Filter © 2008 General Dynamics.  All Rights Reserved.

12 © 2008 General Dynamics. All Rights Reserved.
Our Environment © 2008 General Dynamics.  All Rights Reserved.

13 © 2008 General Dynamics. All Rights Reserved.
Considerations Implemented with Tc Enterprise™, Tc Engineering™, Tc Reporting and Analytics™ Only addresses web-based login (Clients, TcRA™ (backend), integrations, still use server side authorization) Only works when logging in from windows OS machines (looking into Unix) © 2008 General Dynamics.  All Rights Reserved.

14 © 2008 General Dynamics. All Rights Reserved.
Questions? © 2008 General Dynamics.  All Rights Reserved.

Download ppt "Teamcenter™ Security Services SSO"

Similar presentations

Open-source Single Sign-On with CAS (Central Authentication Service) Pascal Aubry, Vincent Mathieu & Julien Marchal Copyright © 2004 – ESUP-Portail consortium.

Open-source Single Sign-On with CAS (Central Authentication Service) Pascal Aubry, Vincent Mathieu & Julien Marchal Copyright © 2004 – ESUP-Portail consortium.
Welcome to Middleware Joseph Amrithraj

Welcome to Middleware Joseph Amrithraj
Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.
Copyright © 2005, SAS Institute Inc. All rights reserved. User Authentication and Single Sign-on Across the SAS ® 9 Platform Larry Noe and Scott Sweetland,

Copyright © 2005, SAS Institute Inc. All rights reserved. User Authentication and Single Sign-on Across the SAS ® 9 Platform Larry Noe and Scott Sweetland,
ELAG Trondheim 2004 1 Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.

ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.
Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
SharePoint Server Architecture and Deployment Michael Curry.

SharePoint Server Architecture and Deployment Michael Curry.
Understanding Networks I. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.

Understanding Networks I. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 10 Authenticating Users By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 10 Authenticating Users By Whitman, Mattord, & Austin© 2008 Course Technology.
Enterprise Single Sign On Identity management for web applications.

Enterprise Single Sign On Identity management for web applications.
© N. Ganesan, Ph.D., All rights reserved. Active Directory Nanda Ganesan, Ph.D.

© N. Ganesan, Ph.D., All rights reserved. Active Directory Nanda Ganesan, Ph.D.
Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.

Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.
Authenticating REST/Mobile clients using LDAP and OERealm

Authenticating REST/Mobile clients using LDAP and OERealm
© N. Ganesan, Ph.D., All rights reserved. Active Directory Nanda Ganesan, Ph.D.

© N. Ganesan, Ph.D., All rights reserved. Active Directory Nanda Ganesan, Ph.D.
Virtual Machine Management

Virtual Machine Management
Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.

Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.
Single Sign-on Integration (SSI) MSIT 458 – Information Security Project Part 2 Prepared for Professor Yan Chen Prepared by Team Triad Radu Bulgaru Moniza.

Single Sign-on Integration (SSI) MSIT 458 – Information Security Project Part 2 Prepared for Professor Yan Chen Prepared by Team Triad Radu Bulgaru Moniza.
TAM STE Series 2008 © 2008 IBM Corporation WebSEAL SSO, Session 108/2008 TAM STE Series 2008 - WebSEAL SSO, Session 1 Presented by: Andrew Quap.

TAM STE Series 2008 © 2008 IBM Corporation WebSEAL SSO, Session 108/2008 TAM STE Series WebSEAL SSO, Session 1 Presented by: Andrew Quap.
August 25, 20151 SSO with Microsoft Active Directory Presented by: Craig Larrabee.

August 25, SSO with Microsoft Active Directory Presented by: Craig Larrabee.

Similar presentations

Ads by Google