|
Key
This line was removed.
This word was removed. This word was added.
This line was added.
|
Comment:
Changes (4)
View page history... {panel:bgColor=#e0e0e0|borderColor=#B0c4de} h1. {color:#005480}New Demos{color} h5. OpenSSO Federation Validator |
See how simple it is to federate partners and quickly validate the federation connection via the OpenSSO federation validator. |
| [OpenSSO Federation Validator|https://slx.sun.com/1179275039] |
... h5. OpenSSO Enterprise:The Fedlet.NET |
A demonstration of the Sun OpenSSO Enterprise Fedlet for .NET, the lightest, fastest way to federate in the world\! |
| [The Fedlet.NET|https://slx.sun.com/1179274967] |
... h5. OpenSSO Preview: OAuth Token Service Use the OpenSSO OAuth Token Service to secure your applications. [OAuth Token Service|https://slx.sun.com/1179275000] {panel} {section} {section} {section} {column:width=1%} {column} {column:width=31%} h1. Technical Articles ---- * [Google Apps Starter Kit|http://www.sun.com/offers/details/google_apps_opensso.xml] A step-by-step demonstration on how users can gain direct access to Google Apps based on their enterprise login. This enables organizations that have selected Google Apps as their hosted collaboration suite to deploy OpenSSO for rapid federated single sign-on in minutes. * [OpenSSO Configuration Diagnostic Tool|http://wikis.sun.com/x/yYGwAw] The OpenSSO Configuration Diagnostic Tool validates your configured instance and environment. Use the tool to verify the configuration settings and identify any possible configuration issues. This article provides instructions for obtaining and running the tool. * [Perspectives on Quality Assurance for OpenDS|http://developers.sun.com/identity/reference/techart/opends-qa.html] OpenDS is Sun's open-source project for developing a next-generation directory service. In this article, QA lead Gary Williams elaborates on the project's testing aspect: opportunities, challenges, guidelines, practices, measurements. * [Federated Single Sign-On for Salesforce in OpenSSO|http://developers.sun.com/identity/reference/techart/salesforce.html] Learn how to implement federated SSO for Salesforce CRM software with an open-standards-based approach, featuring OpenSSO as the identity provider. That way, you preserve the confidentiality of user login credentials and eliminate the need for multiple logins. * [Single Sign-On for SugarCRM Through a SAML-Based Integration of OpenSSO and simpleSAMLphp|http://developers.sun.com/identity/reference/techart/sugarCRM.html] With PHP-based SugarCRM as an example, this article shows you how to enforce SSO in a PHP environment. The process integrates OpenSSO, Sun's open-source Web access management project, with an application in the Linux, Apache, MySQL, and PHP (LAMP) or Solaris and AMP (SAMP) stack. Here, simpleSAMLphp acts as the front end for SugarCRM. * [Federated Single Sign-On for Google Apps in OpenSSO|http://developers.sun.com/identity/reference/techart/google-apps.html] Federating single sign-on with OpenSSO is fast, straightforward, and intuitive. This article describes the process for highly popular Google Apps. * [Federation Proof-of-Concept OpenSSO, WS-Federation and DataPower \[ossoScribes:PDF\]|https://opensso.dev.java.net/files/documents/3676/79106/OpenSSO-WS-Fed-DataPower-FederationPoC.pdf] This document describes a proof of concept showing single sign-on between OpenSSO and Active Directory Federation Services (ADFS) via WS-Federation and between OpenSSO and the customer's WebSphere environment via IBM DataPower and SAML. * [Sun Secure Global Desktop and OpenSSO Integration \[ossoScribes:PDF\]|https://opensso.dev.java.net/files/documents/3676/112554/SecureGlobalDesktop-OpenSSO-Integration.pdf] This document describes how Sun Secure Global Desktop can be integrated in a Web access-management infrastructure based on OpenSSO, enabling single sign-on and policy enforcement. * [Deploying OpenSSO on GlassFish Application Server|http://developers.sun.com/identity/reference/techart/opensso-glassfish.html] Go open source for identity management\! Deployment of OpenSSO on GlassFish application server results in an ideal environment for developing secure Web applications. This article describes the basic deployment process. * [Integrating Applications With OpenSSO|http://developers.sun.com/identity/reference/techart/app-integration.html] Learn the four ways in which to integrate Web applications with OpenSSO: through the Policy Agent, a reverse proxy, the client SDK, and identity services. In addition, this article features a Ruby on Rails sample application and shows you how to secure its login process with identity services. * [Federated Identity Through the Eyes of the Deployer|http://developers.sun.com/identity/reference/techart/deployment.html] What identity-related challenges do application deployers face? What considerations are involved in setting up a single sign-on solution so that users can authenticate elsewhere before accessing your application? What are the popular federated identity protocols? What questions must you ponder before adopting a standardized solution? Find the answers, along with tips and guidelines, in this article. * [Sun Technical Specialist on Identity and OpenSSO Extensions|http://developers.sun.com/identity/reference/techart/openid.html] Interview with Paul Bryan, a Sun technical specialist in Vancouver, B.C., about his background in identity-related development. We also discussed [OpenSSO Extensions|https://opensso.dev.java.net/public/extensions], including support for [OpenID|http://openid.net/]. Notably, Paul aims to create an authentication system that will alleviate security fraud and theft, such as phishing. * [Securing Site Access With CardSpace and OpenSSO: An Overview|http://developers.sun.com/identity/reference/techart/cardspace.html] By Martin Gee, ICSynergy International - This article describes the benefits, basic architecture, and process flow of the CardSpace-OpenSSO authentication module. * [Single Logout: A Demo|http://developers.sun.com/identity/reference/techart/single-logout.html] This article is a follow up to how Project Lightbulb has grown, what constitutes a Circle of Trust, and how SLO works. * [Building Identity-Enabled Web Services|http://developers.sun.com/prodtech/identserver/reference/techart/id-enabled-ws.html] Sun's identity experts answer that question of how to ensure secure access to Web services across enterprises and preserve privacy of sensitive data , along with sample code and suggestions for products and technologies. * [Federated Identity: Single Sign-On Among Enterprises|http://developer.sun.com/prodtech/identserver/reference/techart/federated.html] Federated Identity: Single Sign-On Among Enterprises * [Switch on SAML for PHP with Project Lightbulb|http://developers.sun.com/prodtech/identserver/reference/techart/lightbulb.html] SAML for PHP with Project Lightbulb * [Federation Proof-of-Concept OpenSSO, WS-Federation and DataPower \[ossoScribes:PDF\]|https://opensso.dev.java.net/files/documents/3676/79106/OpenSSO-WS-Fed-DataPower-FederationPoC.pdf] This document describes a proof of concept showing single sign-on between OpenSSO and Active Directory Federation Services (ADFS) via WS-Federation and between OpenSSO and the customer's WebSphere environment via IBM DataPower and SAML. {expand: h5. Enabling Virtual Federation With OpenSSO}* [Enabling Virtual Federation With OpenSSO, Part 1: Introduction|http://developers.sun.com/identity/reference/techart/virtual-federation.html] What challenges are businesses facing in identity federation? How does OpenSSO's virtual federation capability tackle them so that your identity and federation infrastructure is simple, secure, and standardized? Read this article for the answers. * [Enabling Virtual Federation With OpenSSO, Part 2: A Tutorial|http://developers.sun.com/identity/reference/techart/virtual-federation2.html] Configure OpenSSO for virtual federation and for secure attributes exchange. Enjoy the benefits of a secure, loosely coupled, and centralized federation solution. Read on for details and an overview of the end-to-end virtual federation process. {expand} {expand:h5. Protecting Java EE Applications With OpenSSO Policy Agents}* [Protecting Java EE Applications With OpenSSO Policy Agents, Part 1: Basic Steps|http://developers.sun.com/identity/reference/techart/policyagents.html] Writing security code and configuring the security model for Web applications can be cumbersome. The open-source project OpenSSO offers many security-related capabilities for applications: authentication, authorization, single sign on, identity services, security for Web services. This article describes how to easily protect Web applications with the OpenSSO Policy Agents in just a few steps. * [Protecting Java EE Applications With OpenSSO Policy Agents, Part 2: Same-Domain SSO|http://developers.sun.com/identity/reference/techart/policyagents2.html] How to configure OpenSSO so that certain resources on your secured application are publicly accessible with no authentication required? Read this article for the procedure. Also included is an overview of the types of single sign-on. {expand} {expand:h5. From the Trenches at Sun Identity} * [From the Trenches at Sun Identity, Part 1: Access Management for Web Applications|http://developers.sun.com/identity/reference/techart/accessmgmt.html] In this interview, Jamie Nelson, Sun's director of engineering for access and federation management, points out a major oversight in Web development, elaborates on the current state of single sign-on, and suggests the right tool and the right platform for securing application access. * [From the Trenches at Sun Identity, Part 2: OpenSSO, a Thriving Community|http://developers.sun.com/identity/reference/techart/opensso.html] In this interview, Pat Patterson expounds on OpenSSO's mission, adoption model, and challenges. He also describes a significant gain to Sun and his aspiration for OpenSSO's future. * [From the Trenches at Sun Identity, Part 4: Virtual Federation, a Pioneering Way for Exchanging Authentication Data|http://developers.sun.com/identity/reference/techart/virtualfederation.html] Sun identity architect Rajeev Angal describes the challenges enterprises face with federation and explains how virtual federation, a unique capability in the upcoming Sun Federated Access Manager, effectively resolves all the issues. * [From the Trenches at Sun Identity, Part 5: Support for OpenSSO|http://developers.sun.com/identity/reference/techart/opensso-support.html] Sun is offering full support and indemnification for its open Web access management and federation project. In this interview, senior product manager Nick Wooler describes the background, the support model, and the gains for developers. * [From the Trenches at Sun Identity, Part 6: Identity Services for Securing Web Applications|http://developers.sun.com/identity/reference/techart/identity-services.html] In this interview, Sun identity architect Aravindan Ranganathan explains why OpenSSO's identity services are an ideal architecture for protecting applications from unauthorized access. He also describes the related tasks, the benefits, and the plans for integrating identity services with the federation capability in OpenSSO. * [From the Trenches at Sun Identity, Part 7: Security for Web Services|http://developers.sun.com/identity/reference/techart/webservices.html] What are Web services and why are the data they transmit highly insecure? How do you protect the data interactions? What role does OpenSSO play? Sidharth Mishra, technical product manager for identity management at Sun, answers those questions in this interview. * [From the Trenches at Sun Identity, Part 8: Quality Assurance|http://developers.sun.com/identity/reference/techart/qa.html] In this interview, Indira Thangasamy, senior quality engineering manager for Sun OpenSSO Enterprise, offers insights on the behind-the-scenes testing harness and processes that ensure a high-quality product. {expand} {expand:h5. Securing Applications With Identity Services}* [Securing Applications With Identity Services, Part 1: Authentication|http://developers.sun.com/identity/reference/techart/id-svcs.html] Through an example of a client application built with the NetBeans IDE, this article, Part 1 of a series, shows you how to configure OpenSSO so as to authenticate - by means of identity services - users who access protected resources. * [Securing Applications With Identity Services, Part 2: Authorization|http://developers.sun.com/identity/reference/techart/id-svcs2.html] In Part 2, again with IdSvcsClient, an example client application built with the [NetBeans IDE|http://netbeans.org/], you learn how to further configure OpenSSO so as to allow authenticated users to perform tasks for which they have been authorized. * [Securing Applications With Identity Services, Part 3: User Attributes|http://developers.sun.com/identity/reference/techart/id-svcs3.html] Identity services are interfaces that support authentication, authorization, and other related services with SOAP or REST technology. This article steps you through the procedure for obtaining, through the attribute service, the attributes of users whose tokens are passed in service calls. * [Securing Applications With Identity Services, Part 4: Single Sign-On and Logout|http://developers.sun.com/identity/reference/techart/id-svcs4.html] Learn how to achieve SSO and logout by means of OpenSSO-supported REST operations. By way of demonstration, this article hosts a sample application, accompanied by the related setup procedures and code segments. {expand} {expand:h5. Sun and Microsoft Interoperate for Web Authentication}* [Sun and Microsoft Interoperate for Web Authentication, Part 1|http://developers.sun.com/prodtech/identserver/reference/techart/interoperability.html] by Pat Patterson and Marina Sum - This article, the first in a three-part series, elaborates on how to integrate Active Server Pages (ASP) and ASP.NET applications into an SSO environment with Access Manager and the Policy Agent Microsoft Internet IIS. * [Sun and Microsoft Interoperate for Web Authentication, Part 2|http://developers.sun.com/identity/reference/techart/sharepoint.html] Sun Java System Access Manager and SharePoint Portal Server 2003 - article from Sun Developer Network. * [Sun and Microsoft Interoperate for Web Authentication, Part 3|http://developers.sun.com/identity/reference/techart/owa.html] Sun Java System Access Manager and SharePoint Portal Server 2003 - article from Sun Developer Network. {expand} {expand: h5. Troubleshooting OpenSSO with Firefox Add-Ons}* [Troubleshooting OpenSSO with Firefox Add-Ons: Part 1, Introduction|http://developer.sun.com/identity/reference/techart/troubleshooting.html] OpenSSO deployments can be complex and difficult to debug. In Part 1 of this article, learn how to set up Firefox add-ons to troubleshoot your OpenSSO deployments. * [Troubleshooting OpenSSO with Firefox Add-Ons: Part 2, Single Sign-On and Policy Protection|http://developers.sun.com/identity/reference/techart/troubleshooting2.html] In Part 2 of this article, explore an OpenSSO deployment designed for simple single sign-on and policy protection. {expand} {expand:h5. Developing Secure Applications With Sun Java System Access Manager}* [Developing Secure Applications With Sun Java System Access Manager, Part 1: Basic Authorization|http://developers.sun.com/identity/reference/techart/secureapps.html] By Robert Skoczylas and Marina Sum, June 25, 2007. This article, Part 1 of a series, describes how to use Sun Java System Access Manager to fulfill the authorization requirements for a fictitious health-care insurance company, EB Health. * [Developing Secure Applications With SJS Access Manager|http://developers.sun.com/identity/reference/techart/secureapps2.html] In Part 2, you learn how to satisfy some of the most common yet complex enterprise deployment and quality requirements, again with Access Manager and through the EB Health example. {expand} {expand:h5. More on Sun Java System Access Manager}* [Achieving OTP-based Authentication by Integrating Sun Java System Access Manager and ActivIdentity 4TRESS Authentication Server|http://developers.sun.com/identity/reference/techart/4tress.html] Great news for identity developers\! An integration of Sun Java System Access Manager (henceforth, Access Manager) and ActivIdentity 4TRESS Authentication Server (henceforth, 4TRESS) is now in place. Newly available as an OpenSSO extension is an Access Manager authentication module that adopts the 4TRESS-supported one-time password (OTP) schemes, including Europay, MasterCard, and Visa (EMV or Chip and PIN). That Access Manager module is known as the 4TRESS OTP authentication module. * [Installing, Configuring, and Deploying Sun Java System Access Manager the Simple Way|http://developers.sun.com/identity/reference/techart/install.html] This article describes a simple and efficient way to install, configure, and deploy Access Manager on Sun Java System Application Server, which is also an open-source project called GlassFish. On average, the entire process takes less than 10 minutes to complete and so is especially handy for prototypes. * [Achieving SSO With Sun Java System Access Manager and SAML|http://developers.sun.com/identity/reference/techart/sso.html] By Vasanth Bhat and Marina Sum. This article explains the basic SAML concepts and describes the steps for achieving SSO with Access Manager 7.1 and the SAML 1.x Web Browser Artifact Profile. * [Installing, Managing, and Using Sun Java System Access Manager and Sun Java System Identity Manager on the Solaris 10 OS|http://www.sun.com/bigadmin/features/articles/install_id_mgr.html] Installing, Managing, and Using Sun Java System Access Manager and Sun Java System Identity Manager on the Solaris 10 OS. {expand} {column} {column:width=1%} {column} {column:width=31%} h1. Featured Demos ---- h5. OpenSSO Federation Validator |
See how simple it is to federate partners and quickly validate the federation connection via the OpenSSO federation validator. |
| [OpenSSO Federation Validator|https://slx.sun.com/1179275039] |
... h5. OpenSSO Enterprise:The Fedlet.NET |
A demonstration of the Sun OpenSSO Enterprise Fedlet for .NET, the lightest, fastest way to federate in the world\! |
| [The Fedlet.NET|https://slx.sun.com/1179274967] |
... h5. OpenSSO Preview: OAuth Token Service Use the OpenSSO OAuth Token Service to secure your applications. [OAuth Token Service|https://slx.sun.com/1179275000] h5. OpenSSO Installation This demonstration shows how to deploy OpenSSO on a Glassfish container. [Watch Now\!|http://www.screencast.com/users/Raskindp/folders/sid/media/6118f1bc-9277-474f-9ad4-31d3f6b21f1d] h5. Simple Federation and the Federation Validator This demonstration shows how to: * Deploy OpenSSO * Configure OpenSSO * Configure an Identity Provider (IDP) * Configure an Service Provider (SP) * Create a Circle of Trust between the IDP and SP * Validate the federated connection [Watch Now\!|http://www.screencast.com/users/Raskindp/folders/Default/media/66c76801-5a28-4d03-9f2c-8f0e178512eb] !http://blogs.sun.com/raskin/resource/Fed_Validator.png|height=240, width=320! h5. The Fedlet This demonstration shows how to generate and deploy a Fedlet, the lightest weight way to federate in the world. [Watch Now\!|https://slx.sun.com/1179271557] !http://wikis.sun.com/download/attachments/6456045/Fedlet_Demo.png|height=240, width=320! h2. More Demos ---- * [Installation / Deployment - Glassfish|http://blogs.sun.com/sid/resource/opensso_install_deploy_glassfish.html] * [Installation / Deployment - Tomcat|http://qingfeng.tech.officelive.com/Documents/opensso-installation.swf] * [One Time Password|http://blogs.sun.com/raskin/entry/roadmap_preview_1x_password_w] * [Identity Management and Virtualization|https://slx.sun.com/1179272877] * [OpenSSO And SAAS|http://blogs.sun.com/sid/resource/Saas_OpenSSO.html] * [OpenSSO And Google Apps|http://developers.sun.com/identity/reference/techart/google-apps.html] * [Federation Validator|http://www.screencast.com/t/mYEXQRHCqto] * [Fedlets - 1|https://slx.sun.com/1179271557] * [Fedlets - 2|http://blogs.sun.com/sid/resource/fedlet.html] {column} {column:width=1%} {column} {column:width=31%} h1. Tutorials ---- h5. Identity Suite Tutorials * [Identity Suite Essentials|http://wikis.sun.com/x/5aDTAw] * [ISE OpenSSO Tutorials|http://wikis.sun.com/x/HrbTAw] h5. Applying Web-Service Security to EJB Applications * [A Tutorial on Applying Web-Service Security to EJB Applications, Part 1 of 3: Overview|http://developers.sun.com/prodtech/identserver/reference/techart/secure-ws.html] * [A Tutorial on Applying Web-Service Security to EJB Applications, Part 2 of 3: Exercises 1-3|http://developers.sun.com/identity/reference/techart/secure-ws2.html] * [A Tutorial on Applying Web-Service Security to EJB Applications, Part 3 of 3: Exercises 4-5|http://developers.sun.com/identity/reference/techart/secure-ws3.html] h5. Downloadble Lab Exercises * [http://wikis.sun.com/display/OpenSSO/Training] h1. FAQ Central ---- h5. OpenSSO FAQs [https://opensso.dev.java.net...|https://opensso.dev.java.net/public/about/faqcenter/faqoverview.html] * [Getting Started|https://opensso.dev.java.net/public/about/faqcenter/faqgetstart.html] * [Source Code|https://opensso.dev.java.net/public/about/faqcenter/faqsourcecode.html] * [How Do I|https://opensso.dev.java.net/public/about/faqcenter/faqhowdoi.html] * [Reporting Bugs and Security Bugs|https://opensso.dev.java.net/public/about/faqcenter/faqbugs.html] * [Policy Agents 3.0 FAQ and Tips|http://wikis.sun.com/display/OpenSSO/PolicyAgents3] * [OpenSSO Extensions|https://opensso.dev.java.net/public/extensions/faqextensions.html] * [README: Build Requirements and Dependencies|https://opensso.dev.java.net/source/browse/opensso/products/README?view=markup] h5. Sun Java System Access Manager FAQs [http://developers.sun.com/identity...|http://developers.sun.com/identity/overview/faq/index.jsp] * [Admin Console|http://developers.sun.com/identity/overview/faq/adminconsole.jsp] * [Authentication|http://developers.sun.com/identity/overview/faq/authentication.jsp] * [SSO and Sessions|http://developers.sun.com/identity/overview/faq/sso.jsp] * [Liberty and SAML (1)|http://developers.sun.com/identity/overview/faq/libertysaml.jsp] * [Liberty and SAML (2)|http://developers.sun.com/identity/overview/faq/libertysaml2.jsp] * [Service Management SDK|http://developers.sun.com/identity/overview/faq/smsdk.jsp] * [Identity Management|http://developers.sun.com/identity/overview/faq/idmgmt.jsp] * [Performance and Sizing, Policy, Session Failover and Deployment, and Agents|http://developers.sun.com/identity/overview/faq/perf-policy-failover-agents.jsp] h1. Video Podcasts ---- * [OpenSSO Enterprise |http://channelsun.sun.com/video/sun+idm+buzz+tv%3A+sun+opensso+enterprise/1815800339] * [Identity Bus | http://channelsun.sun.com/video/programs/idm+buzz+tv/1631239600/sun+idmbuzz+tv%3A+identity+bus/1900347954] * [Social Networking & Identity: Platforms Power | http://channelsun.sun.com/video/programs/idm+buzz+tv/1631239600/sun+idmbuzz+tv%3Asocial+networking+%26+identity%3A+platforms+power/1902591109] * [Identity and Access Management Deployment Best Practices | http://channelsun.sun.com/video/programs/idm+buzz+tv/1631239600/identity+and+access+management+deployment+best+practices/1902595658] h1. Audio Podcasts ---- Hear from the Sun Identity Management team, customers, partners and colleagues about what's happening in the industry and much more. [Listen Now\!|http://www.sun.com/software/products/identity/podcasts.jsp] !http://i.afterdawn.com/v3/news/itunes_logo.jpg|http://phobos.apple.com/WebObjects/MZStore.woa/wa/viewPodcast?id=155846056! [Subscribe via iTunes|http://phobos.apple.com/WebObjects/MZStore.woa/wa/viewPodcast?id=155846056] {column} {section} |