proxy-authentication to SP

Cantor, Scott cantor.2 at
Thu May 7 10:08:22 EDT 2015

On 5/7/15, 9:57 AM, "Ulf Seltmann" <seltmann at> wrote:

>Hello Dave,
>well it would be auditible in house as it is an open source product.
>i think i got the idea of what you are suggesting: estimating the afford
>of auditing against the afford of building a complex authentication
>structure. unfortunately i believe its not our (the executive's)

Are these two apps part of one organization or is this a federated scenario?

It's very unusual for a single org to implement delegation between services. The most common solution is always a service account, and something like CAS proxying or use of Kerberos, both of which are essentially impersonation rather than true delegation, would be other, much less common, solutions.

-- Scott

More information about the users mailing list