File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes JBoss/WildFly and the fly likes Clarification on JBoss Negotiate Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Products » JBoss/WildFly
Bookmark "Clarification on JBoss Negotiate" Watch "Clarification on JBoss Negotiate" New topic

Clarification on JBoss Negotiate

Neelesh A Korade

Joined: Jun 07, 2007
Posts: 26

Our objetive is to achive SSO on JBoss in windows domain using Kerberos. With that in mind, I started looking at options available in JBoss and came across these two links-


  • I am still trying to understand JBossNegotiation. One thing I am not able to get from the above links is whether it uses Kerberos. Note that I am new to all of this and might be missing something very basic.

    Another question was- on the first link above, there is a link to abother webpage under Old SPNEGO/Kerberos Documentation-

    The title under which this link is given makes me feel SSO on JBoss using Kerberos is an old thing and JBossNegotiation is the latest mechanism. Is this understanding correct? Shall I ignore the last link given above and refer only to the first two links?

    Could someone help me with this?

    Thank you

    Jaikiran Pai

    Joined: Jul 20, 2005
    Posts: 10441

    I am not great at these security libraries. And their project names keep changing or new projects keep getting added. Looks like the one with active development, currently is PicketLink which states:

    What components are available under PicketLink projects.

    * IDM: Provide an object model for managing Identities (Users/Groups/Roles) and associated behavior using different identity store backends like LDAP and RDBMS.
    * Federated Identity: Support SAMLv2, WS-Trust and OpenID.
    * AuthZ: Developer friendly authorization framework
    * XACML: Oasis XACMLv2 implementation.
    * Negotiation: Provide SPNego/Kerberos based Desktop SSO.

    You might want to give it a try.

    [My Blog] [JavaRanch Journal]
    I agree. Here's the link:
    subject: Clarification on JBoss Negotiate
    jQuery in Action, 3rd edition