Which handler LDAP SSO - NOW kerberos integration

Cantor, Scott cantor.2 at osu.edu
Wed Nov 19 13:08:55 EST 2014


On 11/19/14, 6:06 PM, "Peter Schober" <peter.schober at univie.ac.at> wrote:

>* Cantor, Scott <cantor.2 at osu.edu> [2014-11-19 18:18]:
>> Add in that using desktop authentication makes web logout even more
>> impossible than it already is (and yet people still ask for it)
>
>Which is why I always suggest doing exactly that (integrating with
>desktop authentication) to those people asking for SAML SLO.
>Then the "protect the desktop, not just the browsers SSO session"
>argument returns with a vengence.

True, yes. Our costs come in trying to get people to understand these 
issues, which it's clear the OP does.

-- Scott



More information about the users mailing list