This week's book giveaway is in the Servlets forum.
We're giving away four copies of Murach's Java Servlets and JSP and have Joel Murach on-line!
See this thread for details.
The moose likes JBoss/WildFly and the fly likes Clarification on JBoss Negotiate Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Products » JBoss/WildFly
Bookmark "Clarification on JBoss Negotiate" Watch "Clarification on JBoss Negotiate" New topic

Clarification on JBoss Negotiate

Neelesh A Korade

Joined: Jun 07, 2007
Posts: 26

Our objetive is to achive SSO on JBoss in windows domain using Kerberos. With that in mind, I started looking at options available in JBoss and came across these two links-


  • I am still trying to understand JBossNegotiation. One thing I am not able to get from the above links is whether it uses Kerberos. Note that I am new to all of this and might be missing something very basic.

    Another question was- on the first link above, there is a link to abother webpage under Old SPNEGO/Kerberos Documentation-

    The title under which this link is given makes me feel SSO on JBoss using Kerberos is an old thing and JBossNegotiation is the latest mechanism. Is this understanding correct? Shall I ignore the last link given above and refer only to the first two links?

    Could someone help me with this?

    Thank you

    Jaikiran Pai

    Joined: Jul 20, 2005
    Posts: 9915

    I am not great at these security libraries. And their project names keep changing or new projects keep getting added. Looks like the one with active development, currently is PicketLink which states:

    What components are available under PicketLink projects.

    * IDM: Provide an object model for managing Identities (Users/Groups/Roles) and associated behavior using different identity store backends like LDAP and RDBMS.
    * Federated Identity: Support SAMLv2, WS-Trust and OpenID.
    * AuthZ: Developer friendly authorization framework
    * XACML: Oasis XACMLv2 implementation.
    * Negotiation: Provide SPNego/Kerberos based Desktop SSO.

    You might want to give it a try.

    [My Blog] [JavaRanch Journal]
    With a little knowledge, a cast iron skillet is non-stick and lasts a lifetime.
    subject: Clarification on JBoss Negotiate
    Similar Threads
    How to Configure Jboss 5.1.0 to run in cluster Mode
    Where can I find xsd for deploy/transaction-service.xml
    Maven JBoss Repository Error
    How to find tomcat version bundled in Jboss
    SSO using SPNego on Kerberos in JBoss 4.2.2