Hello,
i want to implement a SSO solution using SAML and i've been looking at
ESOE as a possible solution.. however i have some questions because
there are somethings i cant understand or cant find information for.

What i want to do is find a solution for SSO that uses SAML.. I have
my application which will be the starting point..assuming it's a web
browser application, in case i'm logged and i open a new tab for
anotehr application for other provider, can automaticate SSO be made?
And does it support federated identity?

It seems your solution is a bit more complex than what i need because
it already deals with authorization.. in my case i will have an
authorization framework which is already developed and i just need to
"talk" to her through SAML+XACML.. would this be possible?

Technical specification:
- is it compliant with Windows/Linux/HPUX/AIX servers?
- is it compliant with Windows/Linux/MacOs clients?
- does it allow authentication methods like smartcard and biometrics?
- does it support XACML?

Thank you so much!
*filipa

Hello,
i want to implement a SSO solution using SAML and i've been looking at
ESOE as a possible solution.. however i have some questions because
there are somethings i cant understand or cant find information for.

What i want to do is find a solution for SSO that uses SAML.. I have
my application which will be the starting point..assuming it's a web
browser application, in case i'm logged and i open a new tab for
anotehr application for other provider, can automaticate SSO be made?
And does it support federated identity?

It seems your solution is a bit more complex than what i need because
it already deals with authorization.. in my case i will have an
authorization framework which is already developed and i just need to
"talk" to her through SAML+XACML.. would this be possible?

Technical specification:
- is it compliant with Windows/Linux/HPUX/AIX servers?
- is it compliant with Windows/Linux/MacOs clients?
- does it allow authentication methods like smartcard and biometrics?
- does it support XACML?

Thank you so much!
*filipa

Hello,
i want to implement a SSO solution using SAML and i've been looking at
ESOE as a possible solution.. however i have some questions because
there are somethings i cant understand or cant find information for.

What i want to do is find a solution for SSO that uses SAML.. I have
my application which will be the starting point..assuming it's a web
browser application, in case i'm logged and i open a new tab for
anotehr application for other provider, can automaticate SSO be made?
And does it support federated identity?

It seems your solution is a bit more complex than what i need because
it already deals with authorization.. in my case i will have an
authorization framework which is already developed and i just need to
"talk" to her through SAML+XACML.. would this be possible?

Technical specification:
- is it compliant with Windows/Linux/HPUX/AIX servers?
- is it compliant with Windows/Linux/MacOs clients?
- does it allow authentication methods like smartcard and biometrics?
- does it support XACML?

Thank you so much!
*filipa

Hi Filipa,

2009/4/8 Filipa <filipa.mo...@alert.pt>

Yes, to both of these.

Currently the ESOE software does not support XACML. On the assumption that
you already have a XACML PEP implementation, you could ignore the
authorization components of ESOE and use what you have.

The core of ESOE is Java, so it will run anywhere Java runs. The SPEP
software (ESOE's implementation of a SAML2 SP) has implementations available
for Java and Apache, and an IIS version which is in a pre-release state at
the moment.

The Apache code has been compiled and tested on FreeBSD 32/64 bit, Linux
32/64 bit, Windows 32 bit, Mac OSX [1], and I'm confident that it would
compile on all modern environments.

We've tested on every browser we have available and haven't found any
problems. (IE6/7/8, Firefox 2/3, Opera, Safari, Konqueror, Chrome, Lynx)

There is a fully extensible authentication 'pipeline' so that you can add
any type of authentication you need to use.

- does it support XACML?

Not natively, though it wouldn't be very difficult to add support.[2]

Regards,
Shaun

[1] Since MacPorts only supports 32-bit, SPEP can only be built 32-bit on
Mac OSX at the moment. This means you can't use the default system Apache.
See http://www.esoeproject.org/confluence/x/aYA3
[2] Writing an XACML implementation would be quite challenging and
time-consuming, but adding it into ESOE would be relatively easy.