
	Home > Ask the Security Experts > Identity Management and Access Control Questions & Answers > How to log in to multiple servers with federated single sign-on (SSO)

Ask The Security Expert: Questions & Answers

EMAIL THIS

How to log in to multiple servers with federated single sign-on (SSO)

EXPERT RESPONSE FROM: Randall Gamby, featured expert

		Pose a Question

		Other Security Categories

		Meet all Security Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 14 September 2009
I'm looking for a technology that allows a user to securely log in to multiple servers (with different domains and possibly even different LANs) simultaneously. Do you have any suggestions?

BROWSE BY TAG

Identity Management and Access Control, Enterprise Single Sign-On (SSO), Enterprise Identity and Access Management, User Authentication Services, Security Token and Smart Card Technology, VIEW ALL TAGS

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Identity Management and Access Control
	Is Identity Management as a Service (IDaaS) a good idea?
	How to confirm the receipt of an email with security protocols
	Learn about enterprise strategy for server virtualization single sign-on
	Employee information security awareness training for new IAM systems
	Can you combine RFID tag technology with GPS to track stolen goods?
	Is there a free enterprise-caliber password-management tool?
	Cryptosystem attacks that do not involve obtaining the decryption key
	Can any firm or organization get a digital signature certificate?
	Should the CTO have domain administrator access?
	Does password sharing in international branches violate SOX?

Enterprise Single Sign-On (SSO)

Security on a budget: How to make the most of authentication tools

Best Identity and Access Management Products

Changing times for identity management

Kerberos configuration as an authentication system for single sign-on

How to use single sign-on for Web access control to prevent malware

Learn about enterprise strategy for server virtualization single sign-on

Enterprise single sign-on: Easing the authentication process

Exploring authentication methods: How to develop secure systems

User provisioning and SSO for PeopleSoft- and Unix-based products

Sun launches open source OpenSSO for identity management

Enterprise Single Sign-On (SSO) Research

Security Token and Smart Card Technology

First Data, RSA push tokenization for payment processing

Best Authentication Products

Are 'strong authentication' methods strong enough for compliance?

Risk management must include physical-logical security convergence

RSA researcher Ari Juels: RFID tags may be easily hacked

Portable security storage device could replace OTP devices

Can you combine RFID tag technology with GPS to track stolen goods?

Security token and smart card authentication

Embedded smart card chips are open to hack attacks

What should an enterprise look for in a password token and a vendor?

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

single sign-on (SearchSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

There are two technologies that come to mind. The first consists of commercially available enterprise single sign-on (eSSO) proprietary products. These are readily available, and many of the major identity and access management vendors have these products in their respective portfolios. However, since you mentioned different domains and LANs, you may have to supplement these tools with a standards-based technology, such as a federation tool.

Federation tools (such as IBM's Tivoli Identity Federation, Oracle Corp.'s Oracle Identity Federation, Ping Identity Corp.'s PingFederate, Courion Corp.'s Access Assurance, etc.) work by predefining the access rights that you or your partner's users will have. This is done first through legal negotiations to establish the constituent classes and rights that the constituents will have on the remote systems. Then, within each federation tool, the token, or assertion, data is defined to express these rights that will be passed during the authorization communications between the clients and end points. Once the federation technologies are installed on both sites, the tools pass along tokens based on these predefined access rights, rather than just passing user authentication data.

While federation is still evolving, the feasibility of using federation technologies within an organization, or even between business partners, is growing daily and has already been in use for several years.

For more information:

What's the difference between SSO and federated identities? Learn more.

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Find Security Solutions for Your Business

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy