|
Siebel Security Guide > Web Single Sign-On Authentication > About Web Single Sign-On >
Web SSO Authentication Process
The steps in the Web SSO authentication process are:
- The user enters credentials at the Web site that are passed to the Web server. A third-party authentication client on the Web server passes the user credentials to the third-party authentication service. The third-party authentication service verifies the user credentials and passes the authenticated user's username to the Siebel Web Server Extension (SWSE).
- The SWSE passes the authenticated user's username and the value for the TrustToken parameter to the authentication manager. The username can be the Siebel user ID or another attribute.
- The security adapter provides the authenticated user's username to a directory, from which the user's Siebel user ID, a database account, and, optionally, roles are returned to the authentication manager. In addition, the security adapter compares the TrustToken value provided in the request with the value stored in the Siebel Application Object Manager's (AOM) configuration file. If the values match, the AOM accepts that the request has come from the SWSE; that is, from a trusted Web server.
- The Siebel Application Object Manager (AOM) uses the returned credentials to connect the user to the database and to identify the user.
Related Topic
About Web Single Sign-On
|
