Enterprise Edition - Single Sign-On (SSO)
Applications Manager's Enterprise Edition supports Single sign-on (SSO) - a mechanism which offers a user unified access i.e users do not have to actively enter their credentials more than once in order to access multiple independent installations (your Admin Server and Managed Servers). Users gain access to all their Managed Servers with a single user authentication into the Admin Server eliminating further prompts when they switch applications during a particular session.
- Security - Capability to implement consistent authentication and authorization guidelines across your enterprise.
- Resource savings - Reducing time spent re-entering passwords for the same identity or profile and central access management.
- User Experience - Ability to move between services and portals securely and seamlessly without password prompts.
Enabling Single Sign-On
You can enable Single Sign-On in your Applications Manager Enterprise setup as follows:
- Download the cas.war file from this link.
- Place the downloaded .war file in the folder webapps folder in the following path: AppManager/working/apache/tomcat/webapps in your Admin Server.
- Start Applications Manager and navigate to the Admin Tab.
- Open User Administration under Applications Manager Server Settings.
- Navigate to the SSO tab.
- Check the Enable SSO checkbox.
- Restart Applications Manager. SSO is enabled.
- Single Sign-on in Managed Servers will be enabled only after Applications Manager is restarted. Please take care to perform the restart after a few minutes to ensure that the SSO key from the Admin server is synched with the Managed Servers.
- The Admin server should be running when the Managed Server starts for SSO to work.
- Users created in the Admin server will be synced to the Managed Server.
- No user creation or modification can be performed in your managed servers