SSO Domino & Portal & Sametime

Hi! Ihave a challenge, and cant find any details in Domino help or Portal info center… Maybe I will have more luck here!

I want to import a LTPA token from WS Portal into an existing Web SSO document on a Domino server. This is the scenario:

I have a Domino server with an existing Web SSO configdocument. The LTPA Token is a domino LTPA token to enable single sign on with sametime/quickplace. The Sametima/Quickplace is in another dns domain than the Domino server, but the WS Portal server is in the same dns domain as the Domino server where I want to import the Websphere LTPA token.

My question is, can I type in multiple dns domains in the existing WEB SSO document? There is already one dns domain there, but this is the dns domain for the Sametime server, and I need to know if I can type in (separated by comma i.e) the WSPortal dns domain name, and then import the webshpere LTPA token key.

I need to know if this is the way to do it, or if there is any workaround, so I dont mess up the existing SSO document with the sametime ltpa token in it…

ANY help highly appreciated!

Best regards,

Renate

Subject: SSO Domino & Portal & Sametime

The short answer no.

Because the LTPA Token is stored in a cookie, it needs to have the same DNS domain (or parent domain) for all servers that are participating in the SSO group. If both domains have a common ancestor, you can use that.

e.g.:

• sametimeserver.domain1.com

• dominoserver.domain2.com

→ No way to make SSO work

• sametimeserver.subdomain1.domain.com

• dominoserver.subdomain2.domain.com

→ SSO should use ‘domain.com’

cheers,

Bram