Federated Single Sign-On in an Identity Provider Environment
This is the most common of the deployments. This is a good approach when you want to use OpenSSO Enterprise for establishing partner relations and still leverage the SiteMinder authentication framework.
For example, as a company partners with external companies, the company deploys OpenSSO in the Service Provider environment to leverage the SAMLv2 Federation protocols. The following figure illustrates how SiteMinder can be enabled in an Identity Provider environment using OpenSSO Enterprise for federation protocols.
Figure 13–3 Deployment Architecture for Federated Single Sign-On in an Identity Provider Environment
In this example, OpenSSO Enterprise provides federated single sign-on among enterprise applications in partner environments, while SiteMinder continues to provide authentication. The following two figures illustrates a typical transaction flow.
Figure 13–4 Process Flow for Federated Single Sign-On in an Identity Provider Environment
Figure 13–5 Process Flow for Federated Single Sign-On in an Identity Provider Environment (Continued)
- © 2010, Oracle Corporation and/or its affiliates