Iis, websphere plugin and ltpa

hcl-bot · March 31, 2009, 4:32am

Hi,

I have set up IIS with the WebSphere plugin to authenticate users against AD. I have this setup for http and https, and both work fine.

However, LTPA does not seem to work:

When a user connects to a domino server which is protected with iis/websphere plugin, and afterwards they connect to a domino-server without IIS, the user is asked for credentials again.

My questions:

Do I need a websphere ltpa token when I use a IIS-server with websphere-plugin?
Is it better to forget SSO with ltpa completely, and just put every domino server behind IIS/Websphere plugin?

hcl-bot · March 31, 2009, 4:34am

Subject: re: iis, websphere plugin and ltpa …

Use SSO and a redirect to the authenticationserver (IIS, Domino and Websphere plugin)

//Tommy

hcl-bot · March 31, 2009, 5:18am

Subject: sso

Hi,

Thanks for your response. Could you clarify your solution a little bit? How does this redirection work ?

hcl-bot · March 31, 2009, 6:32am

Subject: re: sso

Hi

Example:

Your browser opens a URL on your Dominoserver, it detects that you are anonymous, loginform(domcfg.nsf) redirects your browser to the authenticationserver with a Dominoserver running with IIS. The plugin authenticates you to AD and the Dominoserver creates your SSO cookie. Now you are logged in to Domino. A script redirects you back to your origin url.

HTH

//Tommy