|
|||||||||
| PREV PACKAGE NEXT PACKAGE | FRAMES NO FRAMES | ||||||||
See:
Description
| Interface Summary | |
|---|---|
| ISingleSignOnAdmin | Deprecated. As of version 12.0. |
This package has been deprecated as of version 12.0. This package allows you to manage the cache expiry time for single sign-on (SSO) authentication. It is currently only compatible with Windows Active Directory authentication and Kerberos.
This functionality can be implemented by the following four BusinessObjects Enterprise servers:
To manage the cache expiry time for a given server you need to:
Once you have instantiated the class you can determine the amount of time a user's security context will be stored in the server's cache. The security context is defined as a session ticket that is issued by the Windows Active Directory (AD) to a valid principal. It is initially stored in the CMS’s cache where it resides for a specified period of time. Once a request to schedule, view, or edit an object has been issued, the security context will be propagated to the appropriate server’s cache so that it can continue to access the database without prompting the user for security clearance.
The security context has an expiry time that is unrelated to the specific server’s cache expiry time. As a result, the CMS manages the security context's expiry time differently than the other three servers:
For more information on SSO and Kerberos authentication, see the BusinessObjects Enterprise Administrator's Guide.
CePropertyID.SI_MAPPED_GROUPS,
CePropertyID.SI_ALIAS_AUTOADD,
CePropertyID.SI_ALIAS_AUTOCREATE
|
|||||||||
| PREV PACKAGE NEXT PACKAGE | FRAMES NO FRAMES | ||||||||