Providing SSO to Non-Windows Domino Servers Based on Ltpa Token

Currently the SAP Logon Ticket for Single Sign On (SSO) cannot be authenticated by Domino servers running on non-windows platforms, as there is no SAP Ticket Verifier on these platforms.

To provide SSO from the portal to Domino servers on non-windows platforms, you can use Domino's native LtpaToken. This is a single sign on ticket accepted natively by domino.

1. Make sure that the Domino cluster has one primary server which is the Domino Locator server and one or more Domino mail servers.

   See: Lotus Domino administrator manual for information on setting up  the Domino cluster.

2. Make sure that the primary Domino server (Domino Locator server) is running on windows based platform and has the SAP Ticket Verifier as the DSAPI Filter.
3. Set up the Web SSO configuration on this cluster for LtpaToken.

   See: Lotus Domino administrator manual for information on setting up Web SSO configuration for LtpaToken.

4. Make sure that the Lotus Domino Directory (previously known as the Public Names & Address book) of the Domino Locator server contains the person document of all the users and server documents of all servers in the cluster.
5. Deploy the LDS-D (coll.appl.gw.translotus_api.jar) component on all the Domino servers in the cluster.

   See: Installing the LDS-D Component

Creating a Lotus Transport