OpenSSO

2013年1月30日 (三) 10:45的最后版本

您可以在Wikipedia上了解到此条目的英文信息 OpenSSO Thanks, Wikipedia.

OpenSSO based on the code base of Sun Java System Access Manager

OpenSSO embeds OpenDS as its configuration repository

OpenESB uses OpenSSO for Web service security

OpenPortal integrates with OpenSSO for single sign-on

basic architecture of identity services

OpenSSO将关闭, 可关注OpenAM

[编辑] Install

事先安装好 OpenDS 目录服务, Using OpenDS as a user data store for OpenSSO

下载获得 opensso.war, 部署到 GlassFish 上

Federated Access Manager Architecture

通过 http://localhost:8080/opensso 进行配置, 出错

Installing embedded config in :/home/allen/opensso/opends...Done
Creating FAM suffix...Done
"Loading Schema:"am_sm_ds_schema.ldif...Success.
"Loading Schema:"am_remote_opends_schema.ldif...Success.
"Loading Schema:"fam_sds_schema.ldif...Success.
Register service:amEntrySpecific.xml
Status: Failed
Please check the server logs: /home/allen/opensso/opensso/debug

To fix the above error, please do the following :

1. Change jvm-options from “-client” to “-server”in domain.xml

2. Change jvm-options from -Xmx512m to -Xmx1024m in domain.xml

Then remove the configuration directory /home/allen/opensso and re-run the OpenSSO configurator.

[编辑] Key Features

Single sign-on (SSO)
Centralized authorization services
Federated Identity support
J2EE architecture and comprehensive APIs
Enterprise-class scalability and reliability
Real-time audit

[编辑] Supported standards

Java Authentication and Authorization Service (JAAS)
Kerberos
Lightweight Directory Access Protocol (LDAP)
Liberty ID-FF
Liberty Identity Web Services Framework (ID-WSF)
SAML
SOAP
Secure Sockets Layer (SSL)
WS-I Basic Security Profile tokens
XML Digital Signature
XML Encryption

[编辑] Supported authentication modules

Active Directory
Anonymous
Certificate
HTTP Basic
Java Database Connectivity (JDBC)
LDAP
Membership
Mobile Subscriber ISDN (MSISDN)
Password Playback
RADIUS
SafeWord
SAML

[编辑] GlassFish

Configure OpenSSO with OpenDS as configuration repository

Solaris|OpenDS|GlassFish|OpenSSO - A Perfect Union

[编辑] Docs

[编辑] Links

https://opensso.dev.java.net/
http://wikis.sun.com/display/OpenSSO
http://docs.huihoo.com/opensso/
http://download.huihoo.com/opensso/
OpenSSO Agent for SJS AS 8.2 (and soon for GlassFish) - http://blogs.sun.com/page/theaquarium?anchor=opensso_agent_for_sjs_as

<discussion>characters_max=300</discussion>

@@ 第1行： / 第1行： @@
-[[Image:opensso.jpg|right]]
+{{top news}}
+{{SeeWikipedia}}
+[[Image:logo-opensso.gif|right]]
-https://opensso.dev.java.net/
+OpenSSO based on the code base of [http://www.sun.com/software/products/access_mgr/ Sun Java System Access Manager]
+OpenSSO embeds [[OpenDS]] as its configuration repository
+[[OpenESB]] uses OpenSSO for Web service security
+[[OpenPortal]] integrates with OpenSSO for single sign-on
+[[Image:identity-services-architecture.jpg|thumb|right|basic architecture of identity services]]
+OpenSSO将关闭, 可关注[[OpenAM]]
+==Install==
+事先安装好 [[OpenDS]] 目录服务, [http://blogs.sun.com/indira/entry/using_opends_as_a_user Using OpenDS as a user data store for OpenSSO]
+下载获得 opensso.war, 部署到 GlassFish 上
+[[Image:opensso-architecture.jpg|right|thumb|Federated Access Manager Architecture]]
+通过 http://localhost:8080/opensso 进行配置, 出错
+ Installing embedded config in :/home/allen/opensso/opends...Done
+ Creating FAM suffix...Done
+ "Loading Schema:"am_sm_ds_schema.ldif...Success.
+ "Loading Schema:"am_remote_opends_schema.ldif...Success.
+ "Loading Schema:"fam_sds_schema.ldif...Success.
+ Register service:amEntrySpecific.xml
+ Status: Failed
+ Please check the server logs: /home/allen/opensso/opensso/debug
+To fix the above error, please do the following :
+. Change jvm-options from “-client” to “-server”in domain.xml
+. Change jvm-options from -Xmx512m to -Xmx1024m in domain.xml
+Then remove the configuration directory /home/allen/opensso and re-run the OpenSSO configurator.
+==Key Features==
+* Single sign-on (SSO)
+* Centralized authorization services
+* Federated Identity support
+* J2EE architecture and comprehensive APIs
+* Enterprise-class scalability and reliability
+* Real-time audit
+==Supported standards==
+* Java Authentication and Authorization Service (JAAS)
+* Kerberos
+* Lightweight Directory Access Protocol (LDAP)
+* Liberty ID-FF
+* Liberty Identity Web Services Framework (ID-WSF)
+* SAML
+* SOAP
+* Secure Sockets Layer (SSL)
+* WS-I Basic Security Profile tokens
+* XML Digital Signature
+* XML Encryption
+==Supported authentication modules==
+* Active Directory
+* Anonymous
+* Certificate
+* HTTP Basic
+* Java Database Connectivity (JDBC)
+* LDAP
+* Membership
+* Mobile Subscriber ISDN (MSISDN)
+* Password Playback
+* RADIUS
+* SafeWord
+* SAML
+==GlassFish==
+[[Image:GlassFish-Configuration-OpenSSO.jpg|right|thumb|Configure OpenSSO with OpenDS as configuration repository]]
+[http://blogs.sun.com/indira/entry/solaris%7Copends%7Cglassfish%7Copensso_-_a_perfect_union Solaris|OpenDS|GlassFish|OpenSSO - A Perfect Union]
+==Docs==
+*[http://developers.sun.com/identity/reference/techart/id-svcs.html Securing Applications With Identity Services, Part 1: Authentication]
+*[http://developers.sun.com/identity/reference/techart/id-svcs2.html Securing Applications With Identity Services, Part 2: Authorization]
+*[http://developers.sun.com/identity/reference/techart/id-svcs3.html Securing Applications With Identity Services, Part 3: User Attributes]
+==Links==
+* https://opensso.dev.java.net/
+* http://wikis.sun.com/display/OpenSSO
+* http://docs.huihoo.com/opensso/
+* http://download.huihoo.com/opensso/
+* OpenSSO Agent for SJS AS 8.2 (and soon for GlassFish) - http://blogs.sun.com/page/theaquarium?anchor=opensso_agent_for_sjs_as
+{{comment}}
+[[category:identity]]
+[[category:security]]
+[[category:SSO]]