Authentication at Identity Provider (Sun OpenSSO Enterprise 8.0 Deployment Planning Guide)

Sun OpenSSO Enterprise 8.0 Deployment Planning Guide

Previous: Secure Attributes Exchange Client APIs
Next: Secure Attribute Exchange at the Identity Provider

Authentication at Identity Provider

When a user is already authenticated in an enterprise, the legacy identity provider application sends a secure HTTP GET/POST message to OpenSSO Enterprise asserting the identity of the user. OpenSSO Enterprise then verifies the authenticity of the message and establishes a session for the authenticated user. Secure Attributes Exchange can be used to transfer the user's authentication information to the local instance of OpenSSO Enterprise in order to create a new session.

Previous: Secure Attributes Exchange Client APIs
Next: Secure Attribute Exchange at the Identity Provider