Product overview > What's new summary > New features and functionality > What's new for administrators
Security enhancements
Learn about the new security features and functionality offered by WebSphere Commerce v7 in the areas of authentication, authorization, and access control policies that are important for the chief security officer or the security administrator responsible for securing the site.
WebSphere Commerce can generate the LTPA cookie in single sign-on scenarios
HTTP single sign-on preserves user authentication on different Web Applications. By using HTTP single sign-on the user is not prompted multiple times for security credentials within a given trust domain.
WebSphere Commerce generates the Lightweight Third Party Authentication (LTPA) cookie, where it can be used by other WebSphere Application Server applications. This enables WebSphere Commerce to be the authentication engine. A JAAS login module named WCLogin is created and used during authentication to enable WebSphere Commerce to generate the LTPA cookie.
WebSphere Commerce uses federated repositories to connect to LDAP
WebSphere Commerce connects to LDAP using Federated repositories, provided in WebSphere Application Server version 7. The federated repositories consist of one or more LDAP servers and a built-in, file-based repository.
Related concepts
Directory services and WebSphere Commerce