my dog learned polymorphism*
The moose likes JBoss/WildFly and the fly likes Clarification on JBoss Negotiate Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Products » JBoss/WildFly
Bookmark "Clarification on JBoss Negotiate" Watch "Clarification on JBoss Negotiate" New topic
Author

Clarification on JBoss Negotiate

Neelesh A Korade
Greenhorn

Joined: Jun 07, 2007
Posts: 26
Hi

Our objetive is to achive SSO on JBoss in windows domain using Kerberos. With that in mind, I started looking at options available in JBoss and came across these two links-

  • http://community.jboss.org/wiki/JbossNegotiation
    http://community.jboss.org/wiki/ConfiguringJBossNegotiationinanallWindowsDomain


  • I am still trying to understand JBossNegotiation. One thing I am not able to get from the above links is whether it uses Kerberos. Note that I am new to all of this and might be missing something very basic.

    Another question was- on the first link above, there is a link to abother webpage under Old SPNEGO/Kerberos Documentation-

    http://community.jboss.org/wiki/NegotiateKerberos

    The title under which this link is given makes me feel SSO on JBoss using Kerberos is an old thing and JBossNegotiation is the latest mechanism. Is this understanding correct? Shall I ignore the last link given above and refer only to the first two links?

    Could someone help me with this?

    Thank you
    Neelesh



    Jaikiran Pai
    Marshal

    Joined: Jul 20, 2005
    Posts: 10067
        
    163

    I am not great at these security libraries. And their project names keep changing or new projects keep getting added. Looks like the one with active development, currently is PicketLink which states:


    What components are available under PicketLink projects.

    * IDM: Provide an object model for managing Identities (Users/Groups/Roles) and associated behavior using different identity store backends like LDAP and RDBMS.
    * Federated Identity: Support SAMLv2, WS-Trust and OpenID.
    * AuthZ: Developer friendly authorization framework
    * XACML: Oasis XACMLv2 implementation.
    * Negotiation: Provide SPNego/Kerberos based Desktop SSO.


    You might want to give it a try.



    [My Blog] [JavaRanch Journal]
     
    I agree. Here's the link: http://aspose.com/file-tools
     
    subject: Clarification on JBoss Negotiate