Single Sign-On Solutions for IBM FileNet P8 Using IBM Tivoli and WebSphere Security Technology
An IBM Redbooks publication
Note: This is publication is now archived. For reference only.
Authentication is the act of verifying a user's identity based on the credentials that they have presented. Establishing each user's identity is a critical first step in any client/server based system. In this IBM® Redbooks® publication, we present an overview of the set of authentication options in the IBM FileNet® P8 V4.0 release.
The two standards at the core of the authentication process in IBM FileNet P8 V4.0 are the Java™ Authentication and Authorization Service (JAAS) standard and the Web Services Security standard (WS-Security). The JAAS standard forms the framework for security interoperability in the J2EE™ world, while the WS-Security standard forms the framework for security interoperability in the heterogeneous world of clients and servers that communicate through Web services interfaces. IBM FileNet customers rely on a variety of authentication technologies to secure their corporate intranets. By implementing and adhering to these two standards, IBM FileNet P8 V4.0 enables a wide range of authentication integrations.
In this IBM Redbooks publication we discuss and demonstrate the IBM FileNet P8 integration with IBM Tivoli Access Manager for e-business, IBM Tivoli Federated Identity Manager, and the SPNEGO mechanism provided in IBM WebSphere Application Server.
This book is a valuable resource for security officers, access management administrators, and architects who wish to better understand single sign-on options for the IBM FileNet P8 V4.0 solution.
The re-publication from 24 November 2009 includes some error corrections and clarifications. No new content has been added.
Part 1. Architecture and design
Chapter 1. Business context for single sign-on in an Enterprise Content Management environment
Chapter 2. Single sign-on architecture and component design
Part 2. Technical single sign-on implementations
Chapter 3. Customer overview
Chapter 4. Single sign-on using Tivoli Access Manager for e-business
Chapter 5. Single sign-on using SPNEGO
Chapter 6. Single sign-on using Tivoli Federated Identity Manager
Appendix A. Content Engine Web Service client
Appendix B. Additional material