| | | | |
| A |
| |
| | access control, OpenSSO Enterprise (  ) |
| |
| | access logs ( ) |
| |
| | Access Manager Repository Plug-in, identity repository plug-in ( ) |
| |
| | account locking |
| | | and authentication ( ) |
| | | memory locking ( ) |
| | | physical locking ( ) |
| |
| | action, policy ( ) |
| |
| | Active Directory authentication ( ) |
| |
| | active session time, policy ( ) |
| |
| | agents |
| | | See policy agent | |
| | | See security agent | |
| |
| | amLogging.xml ( ) |
| |
| | Anonymous authentication ( ) |
| |
| | API, SAML v2 ( ) |
| |
| | application programming interfaces, See API |
| |
| | architecture |
| | | client/server ( ) |
| | | Discovery Service ( ) |
| | | federation ( ) |
| | | Identity Web Services ( ) |
| | | plug-ins ( ) |
| | | SAML v1.x ( ) |
| | | sample deployment 1 ( ) |
| | | sample deployment 2 ( ) |
| | | web services security ( ) |
| | | web services security deployment ( ) |
| |
| | auditing, See logging |
| |
| | authentication chain, policy ( ) |
| |
| | authentication chaining ( ) |
| |
| | authentication configuration service ( ) |
| |
| | authentication context, overview ( ) |
| |
| | authentication data ( ) ( ) |
| |
| | authentication level, policy ( ) |
| |
| | authentication level-based authentication ( ) |
| |
| | authentication module instance, policy ( ) |
| |
| | authentication modules ( ) ( ) |
| | | Active Directory ( ) |
| | | Anonymous ( ) |
| | | Certificate ( ) |
| | | Data Store ( ) |
| | | Federation ( ) |
| | | HTTP Basic ( ) |
| | | JDBC ( ) |
| | | Membership ( ) |
| | | MSISDN ( ) |
| | | RADIUS ( ) |
| | | SafeWord ( ) |
| | | SAML ( ) |
| | | SecurID ( ) |
| | | UNIX ( ) |
| | | Windows Desktop SSO ( ) |
| | | Windows NT ( ) |
| |
| | Authentication Service |
| | | account locking ( ) |
| | | authentication chaining ( ) |
| | | authentication configuration service ( ) |
| | | authentication level-based authentication ( ) |
| | | authentication type configurations ( ) |
| | | configuration ( ) |
| | | core authentication module ( ) |
| | | description ( ) |
| | | distributed authentication user interface ( ) |
| | | features ( ) |
| | | FQDN name mapping ( ) |
| | | JAAS shared state ( ) |
| | | login URLs ( ) |
| | | module-based authentication ( ) |
| | | modules ( ) |
| | | or Authentication Web Service (Liberty) ( ) |
| | | organization-based authentication ( ) |
| | | overview ( ) |
| | | persistent cookie ( ) |
| | | process ( ) |
| | | programming interfaces ( ) |
| | | realm-based authentication ( ) |
| | | realm configuration ( ) |
| | | redirection URLs ( ) |
| | | role-based authentication ( ) |
| | | security ( ) |
| | | service-based authentication ( ) |
| | | session upgrade ( ) |
| | | SPI ( ) |
| | | user-based authentication ( ) |
| | | user interface ( ) |
| |
| | authentication services |
| | | Authentication Service (non-Liberty) ( ) |
| | | Authentication Web Service (Liberty) ( ) |
| |
| | authentication type configurations ( ) |
| |
| | Authentication Web Service ( ) |
| | | description ( ) |
| | | intefaces ( ) |
| | | or Authentication Service (non-Liberty) ( ) |
| |
| | authorization |
| | | See Policy Service | |
| | | and XACML ( ) |
| | | overview ( ) |
| |
| | auto-federation ( ) |
| | | | |
| C |
| |
| | CDSSO, See cross-domain single sign-on |
| |
| | centralized agent configuration ( ) |
| |
| | centralized configuration data, bootstrap file ( ) |
| |
| | Certificate authentication ( ) |
| |
| | circle of trust |
| | | definition ( ) ( ) |
| |
| | Client Detection Service, in authentication ( ) |
| |
| | Client SDK ( ) |
| |
| | Client SDK samples ( ) |
| |
| | command line interface ( ) |
| |
| | common domain ( ) ( ) |
| | | reader service ( ) |
| | | writer service ( ) |
| |
| | common domain cookie ( ) |
| |
| | Common Federation Configuration ( ) |
| |
| | Common Tasks Wizard ( ) |
| |
| | components, OpenSSO Enterprise ( ) |
| |
| | conditions, policy ( ) |
| |
| | configuration, Authentication Service ( ) |
| |
| | configuration data ( ) |
| |
| | configuration data store ( ) |
| | | bootstrap file ( ) |
| |
| | configuration files, description ( ) |
| |
| | cookies |
| | | and sessions ( ) |
| | | common domain ( ) |
| |
| | core authentication module ( ) |
| |
| | core services |
| | | Authentication Service ( ) |
| | | Federation Services ( ) |
| | | Identity Repository Service ( ) |
| | | identity web services ( ) |
| | | Logging Service ( ) |
| | | OpenSSO Enterprise ( ) |
| | | Policy Service ( ) |
| | | Security Token Service ( ) |
| | | Session Service ( ) |
| | | Web Services Security ( ) |
| | | web services stack ( ) |
| |
| | cross-domain single sign-on |
| | | definition ( ) ( ) |
| | | process ( ) |
| |
| | cross domain single sign on |
| | | proprietary ( ) |
| | | SAML v2 ( ) |
| |
| | current session properties, policy ( ) |
| | | | |
| F |
| |
| | failover, configuration data store ( ) |
| |
| | features |
| | | Authentication Service ( ) |
| | | OpenSSO Enterprise ( ) |
| |
| | federated identity ( ) |
| |
| | federation ( ) |
| | | architecture ( ) |
| | | common domain ( ) |
| | | definition ( ) |
| | | identity federation and single sign-on ( ) |
| | | options ( ) |
| | | overview ( ) |
| | | SPI ( ) |
| |
| | Federation authentication ( ) |
| |
| | federation management, OpenSSO Enterprise ( ) |
| |
| | federation options |
| | | Liberty ID-FF ( ) |
| | | SAML v1.x ( ) ( ) |
| | | SAML v2 ( ) ( ) |
| |
| | Federation Services, description ( ) |
| |
| | federationmanagement, key features ( ) |
| |
| | Fedlet ( ) |
| | | overview ( ) |
| |
| | flat files, logging ( ) |
| |
| | FQDN name mapping, and authentication ( ) |
| |
| | functions, OpenSSO Enterprise ( ) |
| | | | |
| I |
| |
| | identifiers, Liberty ID-FF ( ) |
| |
| | identity, definition ( ) |
| |
| | identity-based web service ( ) |
| |
| | identity data ( ) |
| |
| | identity federation ( ) ( ) |
| | | definition ( ) |
| |
| | Identity Manager, and OpenSSO Enterprise ( ) |
| |
| | identity providers, definition ( ) |
| |
| | Identity Repository Service |
| | | See identity data | |
| | | description ( ) |
| |
| | identity repository service, plug-in ( ) |
| |
| | Identity Web Services ( ) |
| | | architecture ( ) |
| |
| | identity web services |
| | | description ( ) |
| | | OpenSSO Enterprise ( ) |
| |
| | Identity Web Services |
| | | overview ( ) |
| | | REST ( ) |
| | | SOAP and WSDL ( ) |
| | | styles ( ) |
| |
| | information tree, See configuration data |
| |
| | installation and configuration ( ) |
| |
| | interfaces |
| | | Authentication Service ( ) |
| | | Logging Service ( ) |
| | | Policy Service ( ) |
| | | Security Token Service ( ) |
| | | SOAP Binding Service ( ) |
| | | web services security ( ) |
| | | XACML ( ) |
| |
| | introduction, OpenSSO Enterprise ( ) |
| |
| | IP address/DNS names, policy ( ) |
| | | | |
| L |
| |
| | LDAP authentication ( ) |
| |
| | LDAP filter, policy ( ) |
| |
| | LDAPv3, identity repository plug-in ( ) |
| |
| | legacy mode, OpenSSO Enterprise ( ) |
| |
| | Liberty Alliance Project |
| | | specifications ( ) ( ) |
| |
| | Liberty Alliance Project Identity Federation Framework, See Liberty ID-FF |
| |
| | Liberty ID-FF ( ) |
| | | and single sign-on ( ) |
| | | auto-federation ( ) |
| | | bulk federation ( ) |
| | | convergence with SAML ( ) |
| | | dynamic identity provider proxying ( ) |
| | | federation option ( ) |
| | | global logout ( ) |
| | | identifiers and name registration ( ) |
| | | pre-login process ( ) |
| | | process ( ) |
| | | SAML v1.x comparison ( ) |
| |
| | Liberty ID-FF Service Configuration ( ) |
| |
| | Liberty ID-WSF Security Service ( ) |
| |
| | Liberty Personal Profile Service ( ) |
| | | description ( ) |
| |
| | local identity ( ) |
| |
| | log reading, customize ( ) |
| |
| | logging |
| | | access logs ( ) |
| | | amLogging.xmll ( ) |
| | | component log files ( ) |
| | | error logs ( ) |
| | | flat files ( ) |
| | | log reading ( ) |
| | | overview ( ) |
| | | process ( ) |
| | | recorded events ( ) |
| | | relational databases ( ) |
| | | remote logging ( ) |
| | | secure logging ( ) |
| |
| | Logging Service |
| | | description ( ) |
| | | programming interfaces ( ) |
| |
| | login URLs, and authentication ( ) |
| | | | |
| O |
| |
| | OpenSSO Enterprise |
| | | access control ( ) |
| | | architecture ( ) |
| | | components ( ) |
| | | core services ( ) |
| | | definition ( ) |
| | | features ( ) |
| | | federation management ( ) |
| | | functions ( ) |
| | | identity web services ( ) |
| | | introduction ( ) |
| | | legacy mode ( ) |
| | | overview ( ) |
| | | process ( ) |
| | | web services security ( ) |
| |
| | Oracle Access Manager, and OpenSSO Enterprise ( ) |
| |
| | organization-based authentication ( ) |
| |
| | overview |
| | | authentication and authentication context ( ) |
| | | Authentication Service ( ) |
| | | Discovery Service ( ) |
| | | HTTP security agent ( ) |
| | | Liberty Personal Profile Service ( ) |
| | | message level security ( ) |
| | | OpenSSO Enterprise ( ) |
| | | policy agent ( ) |
| | | Policy Service ( ) |
| | | security agent ( ) |
| | | session service ( ) |
| | | SOAP security agent ( ) |
| | | transport level security ( ) |
| | | XACML ( ) |
| | | | |
| P |
| |
| | Password Reset ( ) ( ) |
| |
| | PDP, in SAML ( ) |
| |
| | persistent cookie, and authentication ( ) |
| |
| | physical locking, and authentication ( ) |
| |
| | plug-ins |
| | | Access Manager Repository Plug-in ( ) |
| | | authentication |
| | | | See authentication modules | |
| | | identity repository service ( ) |
| | | LDAPv3 ( ) |
| | | policy response providers ( ) |
| | | Policy Service ( ) |
| | | service configuration ( ) |
| |
| | policy ( ) |
| | | and XACML ( ) |
| | | conditions ( ) |
| | | definition ( ) |
| | | General Policy Service ( ) |
| | | Policy Configuration Service ( ) |
| | | rule ( ) |
| | | subject ( ) |
| |
| | Policy Administration Point, definition ( ) |
| |
| | policy agent, overview ( ) |
| |
| | policy agents ( ) |
| |
| | Policy Configuration ( ) |
| |
| | Policy Configuration Service ( ) |
| |
| | Policy Decision Point |
| | | and XACML ( ) |
| | | definition ( ) |
| |
| | Policy Enforcement Point |
| | | and XACML ( ) |
| | | definition ( ) |
| |
| | policy evaluation, process ( ) |
| |
| | Policy Service |
| | | definition ( ) |
| | | description ( ) |
| | | overview ( ) |
| | | plug-in ( ) |
| | | policy ( ) |
| | | policy evaluation ( ) |
| | | policy response provider plug-in ( ) |
| | | programming interfaces ( ) |
| | | referral ( ) |
| | | XACML ( ) |
| |
| | policy types ( ) |
| |
| | pre-login process, Liberty ID-FF ( ) |
| |
| | principal, definition ( ) |
| |
| | process |
| | | See OpenSSO Enterprise | |
| | | Discovery Service ( ) |
| | | Liberty ID-FF ( ) |
| | | SOAP Binding Service ( ) |
| |
| | programming interfaces |
| | | Authentication Web Service ( ) |
| | | data services ( ) |
| | | Discovery Service ( ) |
| |
| | provider federation, definition ( ) |
| |
| | providers ( ) |
| | | | |
| R |
| |
| | RADIUS authentication ( ) |
| |
| | reader service ( ) |
| |
| | realm authentication, policy ( ) |
| |
| | realm-based authentication ( ) |
| |
| | realm configuration, authentication ( ) |
| |
| | realms ( ) |
| | | and access control ( ) |
| |
| | redirection URLs, and authentication ( ) |
| |
| | referral ( ) |
| |
| | relational databases, logging ( ) |
| |
| | remote logging ( ) |
| |
| | RequestHandler interface ( ) |
| |
| | resource, policy ( ) |
| |
| | resource offering ( ) |
| |
| | REST ( ) |
| | | Identity Web Services ( ) |
| |
| | role-based authentication ( ) |
| |
| | rule, policy ( ) |
| | | | |
| S |
| |
| | SafeWord authentication ( ) |
| |
| | SAML, convergence with Liberty ID-FF ( ) |
| |
| | SAML authentication ( ) |
| |
| | SAML v1.x |
| | | architecture ( ) |
| | | federation ( ) |
| | | federation option ( ) |
| | | Liberty ID-FF comparison ( ) |
| |
| | SAML v2 ( ) |
| | | administration ( ) |
| | | API ( ) |
| | | basic configuration ( ) |
| | | features ( ) |
| | | federation ( ) |
| | | federation option ( ) |
| | | JSP ( ) |
| | | SPI ( ) |
| |
| | SAML v2 Service Configuration ( ) ( ) |
| |
| | sample deployment 1 ( ) |
| |
| | sample deployment 2 ( ) |
| |
| | samples |
| | | Client SDK ( ) |
| | | command line interface ( ) |
| | | server ( ) |
| |
| | secure attribute exchange, overview ( ) |
| |
| | secure logging ( ) |
| |
| | SecurID authentication ( ) |
| |
| | security, and authentication ( ) |
| |
| | security agent |
| | | HTTP security agent ( ) |
| | | overview ( ) |
| | | SOAP security agent ( ) |
| |
| | security agents ( ) |
| |
| | Security Token Service ( ) ( ) |
| | | and Web Services Security ( ) |
| | | architecture ( ) |
| | | description ( ) |
| | | global service ( ) |
| | | programming interfaces ( ) |
| | | supported tokens ( ) |
| |
| | server samples ( ) |
| |
| | service-based authentication ( ) |
| |
| | service configuration plug-in ( ) |
| |
| | service files, configuration data ( ) |
| |
| | Service Management Service ( ) |
| |
| | service provider interface, See SPI |
| |
| | service provider interfaces, See SPI |
| |
| | service providers, definition ( ) |
| |
| | session |
| | | See user session | |
| | | basic user session ( ) |
| | | initial HTTP request ( ) |
| |
| | session failover tools ( ) |
| |
| | Session Global Service ( ) |
| |
| | session ID, See session token |
| |
| | session object, See session data structure |
| |
| | Session Service, description ( ) |
| |
| | session service, overview ( ) |
| |
| | session termination ( ) |
| |
| | session token ( ) |
| |
| | session upgrade, and authentication ( ) |
| |
| | session validation, process ( ) |
| |
| | single sign-on ( ) |
| | | definition ( ) ( ) |
| | | process ( ) |
| |
| | single sign—on, and Liberty ID-FF ( ) |
| |
| | SiteMinder, and OpenSSO Enterprise ( ) |
| |
| | SOAP and WSDL, Identity Web Services ( ) |
| |
| | SOAP Binding Service ( ) |
| | | description ( ) |
| | | process ( ) |
| | | programming interfaces ( ) |
| |
| | SOAP security agent ( ) |
| |
| | SOAPReceiver, SOAP Binding Service process ( ) |
| |
| | SOAPReceiver servlet ( ) |
| |
| | specifications |
| | | JCP ( ) |
| | | Liberty Alliance Project ( ) |
| | | web services security ( ) |
| | | WS-* ( ) |
| |
| | SPI ( ) |
| | | Authentication Service ( ) |
| | | federation ( ) |
| | | SAML v2 ( ) |
| |
| | SSO, See single sign-on |
| |
| | ssoadm command line ( ) |
| |
| | ssoAdminTools.zip ( ) |
| |
| | ssoSessionTools.zip ( ) |
| |
| | subject, policy ( ) |
| | | | |
| W |
| |
| | Web Services Description Language, See WSDL |
| |
| | web services security ( ) |
| | | architecture ( ) |
| | | deployment architecture ( ) |
| |
| | Web Services Security, description ( ) |
| |
| | web services security |
| | | OpenSSO Enterprise ( ) |
| | | programming interfaces ( ) |
| | | specifications ( ) |
| |
| | web services stack ( ) |
| | | architecture ( ) |
| | | definition ( ) |
| | | included services ( ) |
| | | process ( ) |
| | | with Authentication Web Service ( ) |
| | | with Liberty ID-FF ( ) |
| | | with SAML v2 ( ) |
| |
| | Windows Desktop SSO authentication ( ) |
| |
| | Windows NT authentication ( ) |
| |
| | writer service ( ) |
| |
| | WS-*, specifications ( ) |
| |
| | WS-Federation ( ) |
| |
| | WS-Security specifications ( ) |
| |
| | WS-Trust specifications ( ) |
| |
| | WSDL ( ) ( ) |
