Single Sign-On

[nm_santos <nu...@hotmail.com>]

Does Lenya support SSO with Active Directory?

I can't find any relative information about it, only something about
Shibboleth, but no guide or examples.

Thanks in advance,
Nuno Santos.
-- 
View this message in context: http://old.nabble.com/Single-Sign-On-tp33757865p33757865.html
Sent from the Lenya - Users mailing list archive at Nabble.com.


---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
For additional commands, e-mail: user-help@lenya.apache.org

Re: Single Sign-On

[Richard Frovarp <rf...@apache.org>]

On 04/27/2012 04:01 AM, nm_santos wrote:
> Does Lenya support SSO with Active Directory?
>
> I can't find any relative information about it, only something about
> Shibboleth, but no guide or examples.
>
> Thanks in advance,
> Nuno Santos.

Technically no. SSO (especially when used next to Shibboleth) refers to 
Single Sign On, meaning that logged in sessions are shared. AD can share 
sessions in a Windows environment, but that doesn't translate to the 
web. True SSO technologies are Sibboleth, CAS, SAML, etc. For example, 
if you log into Gmail, that login session is carried forward to Google 
Code.

If you are referring to SSO as a single username and password that one 
can use everywhere, then yes it can. You need to search for the 
underlying technologies to find it. Lenya can do LDAPS authentication. 
That is what you're going to want to look at doing.

It's been an exceptionally long time since I've looked at it, and when I 
did, I actually used it as a basis for doing Kerberos authentication 
(the LDAP piece was for identity translation).

There is documentation up on how to do it in Lenya 1.2. Everything there 
looks to be mostly correct for use against 2.0.

http://lenya.apache.org/docu12x/howtos/ldapauthentication.html

The first few steps do have a couple of substitutions. It's no 
access-control instead of ac, and access-control.xml instead of ac.xconf.

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
For additional commands, e-mail: user-help@lenya.apache.org

Re: Single Sign-On

[florent andré <fl...@4sengines.com>]

As far as I know there is no built-in support for SSO with Active 
Directory in Lenya...
Could be a really nice contribution !

About Shibboleth, I know that it's work for Lenya 1.2 and remember some 
discussion about porting it to 2.X, but I don't know if it was done.

Some resources that can help :
* http://www.slideshare.net/nobby/lenya-and-shibboleth
* 
http://svn.apache.org/repos/asf/lenya/branches/branch_1_2_x_shibboleth/ 
(lenya 1.2)
* http://svn.apache.org/repos/asf/lenya/branches/docu_shibboleth/ (don't 
know what is in)

On 04/27/2012 11:01 AM, nm_santos wrote:
>
> Does Lenya support SSO with Active Directory?
>
> I can't find any relative information about it, only something about
> Shibboleth, but no guide or examples.
>
> Thanks in advance,
> Nuno Santos.

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
For additional commands, e-mail: user-help@lenya.apache.org