||03-06-2009 03:10 PM
Originally Posted by nickowen
I'm looking for an SSO solution that would allow a user to login to a webpage/webapp and ssh. This might not be possible, but I thought I would throw it out there and get some ideas. It seems like most SSO systems use a browser cookie which would be problematic with ssh.
There are a lot of ways to implement single sign on, however, I think the previous posters recommendation of ldap is a solid one and it also enables you to have logins for smtp/pop/imap also use the same authentication.
Typically ldap takes a bit more time to setup initially but once its running and you have your applications authenticating off of it you gain that time back in ease of maintenance.
Most services now can authenticate off of ldap directly or by and by off of pam/nss which can authenticate off of ldap.
Another advantage if you've got some in house programmers is that you can even modify most cms packages to authenticate off ldap relatively easily... and some cms/portals already have authentication through ldap built in.