User names and passwords from GSO
Understand how authentication information is obtained from a server that handles global signon and the conditions for this implementation.
The -b gso option instructs WebSEAL to supply the back-end server with authentication information (user name and password) obtained from a server that handles global signon (GSO).
The following conditions exist for this solution:
- The back-end server applications require different user names and passwords that are not contained in the WebSEAL registry.
- Security is important for both WebSEAL and the back-end server.
Because sensitive authentication information (user name and password) is passed across the junction, the security of the junction is important. An SSL junction is appropriate.
Parent topic: Single Sign-on Solutions