Single signon
Overview
With Single signon users authenticate once when logging in to WebSphere Portal, and the user's identity is passed on to applications without requiring additional identity verification. WebSphere Portal supports single signon through WAS and other authentication proxies, such as Tivoli Access Manager.The single signon functions of WebSphere Portal use the authentication subset of JAAS, building a JAAS Subject for each logged on user. The Subject consists of Principals and Credentials. A Principal is a piece of data, such as the user ID or user's DN, that gives the identity of the Subject. A Credential is a piece of data, such as a password or a CORBA Credential, that can be used to authenticate a subject. The Subject carries around the Principals and Credentials that can be used by the portlet directly or through the credential service.
See also