Configuring CDSSO

The cross domain single sign-on (CDSSO) feature does not apply to all web agents. When CDSSO is not supported by a specific web agent, such information is provided in the individual web agent guide.

The CDSSO feature is configurable through three web agent properties. Enable or disable this feature with the property labeled Cross Domain SSO (Tab: SSO, Name: com.sun.identity.agents.config.cdsso.enable). By default, this property is not enabled, and the feature is turned off.

Set the URL where the CDC controller is installed by assigning the URL as the value to the property labeled CDSSO Servlet URL (Tab: SSO, Name: com.sun.identity.agents.config.cdsso.cdcservlet.url).

The following is an example of the value that could be assigned to the CDSSO Servlet URL property:

http://OpenSSOhost.example.com:58080/amserver/cdcservlet

The third property involved in configuring CDSSO is labeled Cookies Domain List (Tab: SSO, Name: com.sun.identity.agents.config.cookie.domain). This property allows you to specify a list of domains in which cookies have to be set in a CDSSO scenario. This property is used only if CDSSO is enabled. If you leave this property blank, then the fully qualified cookie domain for the web agent server will be used for setting the cookie domain. In such a case, it is a host cookie and not a domain cookie.

For more information on CDSSO, see Sun OpenSSO Enterprise 8.0 Technical Overview.