Enterprise Single Sign On Identity management for web applications
Enterprise Single Sign On What is Single Sign On Single sign-on (SSO) is a mechanism whereby a single action of user authentication and authorization can permit a user to access all computers and systems where he has access permission, without the need to enter multiple passwords
Enterprise Single Sign On SSO with Web Booster Authenticates with Microsoft Windows, creates access tokens for other systems Users logged in to their workstation can auto-login to web applications Authenticates with Microsoft Windows, creates access tokens for other systems Users logged in to their workstation can auto-login to web applications
Enterprise Single Sign On Benefits to Users Only have one username and password to remember No more post-it! notes on monitor with account details Fast Seamless Works with BlackBerry handheld devices Only have one username and password to remember No more post-it! notes on monitor with account details Fast Seamless Works with BlackBerry handheld devices
Enterprise Single Sign On Benefits to Operations Staff Central user account management Common way to manage accounts Web Booster ESSO is quick to deploy No changes to existing servers No more post-it! notes ;-) Central user account management Common way to manage accounts Web Booster ESSO is quick to deploy No changes to existing servers No more post-it! notes ;-)
Enterprise Single Sign On Security Choose between NTLM or Kerberos authentication All data is encrypted and verified against Windows Domain Controllers or KDC servers Traffic to browser may be SSL encrypted Choose between NTLM or Kerberos authentication All data is encrypted and verified against Windows Domain Controllers or KDC servers Traffic to browser may be SSL encrypted
Enterprise Single Sign On Built on Web Booster Get all existing Booster features Content compression Clustering Load sharing Dynamic failover …plus much more Get all existing Booster features Content compression Clustering Load sharing Dynamic failover …plus much more
Enterprise Single Sign On Considerations Need to ensure workstations are not compromised or left unattended Windows Domain structure may need to be rationalized for NTLM to work correctly Need to identify weak spots in infrastructure to avoid single failure points, eg: LDAP Need to ensure workstations are not compromised or left unattended Windows Domain structure may need to be rationalized for NTLM to work correctly Need to identify weak spots in infrastructure to avoid single failure points, eg: LDAP
Enterprise Single Sign On NTLM vs Kerberos NTLM more widely supported in older versions of Windows (pre win2K) NTLM is easier to configure initially Kerberos is more secure Kerberos is not tied to Windows NTLM more widely supported in older versions of Windows (pre win2K) NTLM is easier to configure initially Kerberos is more secure Kerberos is not tied to Windows
Enterprise Single Sign On Requirements Windows workstations Windows domain Lotus Domino and/or IBM WebSphere servers (more coming soon) Windows workstations Windows domain Lotus Domino and/or IBM WebSphere servers (more coming soon)
Enterprise Single Sign On Who uses Web Booster? Some of our customers include…
Enterprise Single Sign On Questions… Web: Contact one of our business partners Web: Contact one of our business partners