I know SiteMinder is tool used single sign-on for LDAP.
May I know, is it for Client to BOXI, or for BOXI to Database?
By this tool, do we achieve End-to-End Single Sign-on?
Thanks
Dave (BOB member since 2003-10-30)
The sales pitch says you get end-to-end SSO, but as with all Silver Bullet Solutions you should probably take that with a grain of salt. It basically intercepts http requests before they reach your servers and make sure that the requestor has a verified session before letting you get at your stuff.
For a practical description of someone’s implementation the State of Utah appears to have left some nice docs public:
http://edg.utah.gov/methods/siteminder_pin/siteminder.html
http://edg.utah.gov/edg_meeting/archives/2000/2000_siteminder/simplesite.pdf
We have something else from Novell (iChain) that does the same sort of thing but a little differently. Don’t press me for details or I’ll be forced to chuck my Great And Powerful Oz mask at you and run. 
Cris E
St Paul, MN
Cris E 
(BOB member since 2005-03-18)