When configured as a security token service, OpenSSO Enterprise acts as a generic web service that does the following:
Issues, renews, cancels, and validates security tokens.
Enables customers to write custom security token providers by extending the framework.
Provides standards-based APIs for clients and applications to access the security token service.
Provides mechanisms to support additional security token types such as Kerberos and others.