how to add support for SSO to a MOSS site?
there are an OA system, an SSO server, and a MOSS site,which is now independent of the OA and SSO server and is currently using form authentication.
now customers require that they can access the moss site's pages directly within from the OA system, without filling the login form of the moss site, namely they can directly jump to pages of the moss site.
TIAAndrew Chen
Interested in BI related technologies
April 22nd, 2010 5:16pm
Andrew
Unfortunately, SSO is not supported OOB for forms authentication. However, you can build your on SSO provider.
Using the Microsoft Single Sign-On Service - The Microsoft Single Sign-On service (SSO) that is provided with
Office SharePoint Server 2007 is designed to work with a Windows identity. If the current user is not a Windows user, it does not work. As a result, forms authentication users cannot take advantage of the default SSO as it is included with Office SharePoint
Server 2007.
Instead of SSO you would need to
configure your extranet Web application to use Web SSO authentication instead of form based authentication to get this seemless "directly jump to pages of the moss site" working.
Additional Reading:
Configure
Web SSO authentication by using ADFS
Plan
for authentication
Simplify
Single Sign-on Using ADFS
Configure
Web SSO authentication by using ADFS (Office SharePoint Server)
Configure
Web SSO authentication by using ADFS (Windows SharePoint Services)
A
Developer's Introduction To Active Directory Federation Services
Active
Directory Federation Services
Kanwal SharePoint Buzz
Free Windows Admin Tool Kit Click here and download it now
April 22nd, 2010 6:15pm
Hi Kanwal
my idea is as following:
can i add an aspx page(say checksso.apsx) and some codes to the moss site, then user can request this page with a parameter containing the target page(say dashboard1.aspx).while checksso.aspx receive the request, it gets ticket from the sso server, and then
simulates the login action and then forwards to the target page,namely dashboard1.aspx.
then my questions are how to add a page to my moss site and where to put my codes of simulating login action.
i just don't know how to accomplish them within moss.
TIA
April 23rd, 2010 7:35am
Hi,
Here are some my thoughts:
First of all, the credentials for the OA system are available to the MOSS site.
Second of all, it doesn’t matter that where are the pages, If only you access the path and provide the correct path parameters.
Third of all, all you need to do is that, go to login page and create a cookie containing a form authentication ticket depending on the OA credential
automatically. Then redirect to the destination page.
And here are some regarding sources:
http://msdn.microsoft.com/en-us/library/aa480476.aspx
http://weblogs.asp.net/hernandl/archive/2004/06/09/ssoformsauth.aspx
Hope it is helpful!
Seven
Free Windows Admin Tool Kit Click here and download it now
April 27th, 2010 9:52am
And here are some regarding sources:
http://msdn.microsoft.com/en-us/library/aa480476.aspx
http://weblogs.asp.net/hernandl/archive/2004/06/09/ssoformsauth.aspx
Hi Seven,
Thanks for your suggestion.
it seems the first link is broken.
thanksAndrew Chen
Interested in BI related technologies
April 28th, 2010 4:17am