Administration Console Online Help

Single Pass Negotiate Identity Asserter-->General

Tasks Additional Documentation Attributes

Overview

Use this tab to configure a Single Pass Negotiate Identity Assertion provider for a security realm.

The Single Pass Negotiate Identity Assertion provider enables single sign-on with desktop clients. The identity assertion provider decodes Simple and Protected Negotiate (SPNEGO) tokens to obtain Kerberos tokens, validates the Kerberos tokens, and maps Kerberos tokens to WebLogic users. The Negotiate Identity Assertion provider utilizes the Java Generic Security Service (GSS) Application Programming Interface (API) to accept the GSS security context via Kerberos.

Tasks

Configuring a Single Pass Negotiate Identity Assertion Provider

Additional Documentation

(Requires an Internet connection.)

Introduction to WebLogic Security

Managing WebLogic Security

Programmimg WebLogic Security

Developing Security Providers for WebLogic Server

Securing a WebLogic Server Deployment

Upgrading Security in WebLogic Server Version 7.0 to WebLogic Server Version 8.1

Security FAQ

The Security page in the WebLogic Server documentation

Attributes

Table 216-1

Attribute Label	Description	Value Constraints
Name	The name of this Single Pass Negotiate Identity Assertion provider. Attribute: `SinglePassNegotiateIdentityAsserter`	Default: Single Pass Negotiate Identity Asserter
Description	A short description of this Single Pass Negotiate Identity Assertion provider. Attribute: `Description`	Default: The Single Pass Negotiate Identity Assertion provider supports identity assertion using HTTP authentication tokens from the SPNEGO protocol. The provider supports identity assertion using the Kerberos tokens contained within the SPNEGO token.
Version	The version number of the Single Pass Negotiate Identity Assertion provider. Attribute: `Version`	Default: 8.1
Active Types	The token types supported by the Single Pass Negotiate Identity Assertion provider. Attribute: `SupportedTypes`	`Authorization`