Single sign-on (SSO) is token-based authentication in which an SSO token is passed in an HTTP header or cookie.
SSO enables users to access multiple, secure, independent systems by logging in once. Token-based authentication uses values from HTTP headers, cookies, or other tokens to authenticate users against their single sign-on systems.
|SSO Mechanism||Authentication Provider||Credential Provider|
|Technical user (basic)
The user name and password that you configure for the endpoint are used to authenticate to the back end.
|X.509||X.509||Any except Principal Propagation|
|SSO2||HTTP and optionally, Populate JAAS subject from client||N/A|
|Technical user (X.509)
The X.509 certificate that you configure using the alias in the endpoint is used to authenticate the back end.
|Custom cookies and headers||Any||Any|