Enabling single sign-on

Enable single sign-on (SSO) and indicate the domain. SSO simplifies user ID management from a user and IT support standpoint.

Before you begin

You must have administrative privileges to enable single sign-on.

About this task

When a client request must flow through multiple systems within the enterprise, the client should not be required to authenticate several times. Instead, the client authenticates once using single sign-on. The authenticated context is propagated to downstream systems, which can apply access control.

To enable single sign-on, use the administrative console to complete the following steps:

Procedure

From the administrative console navigation panel, click Security > Global security.
Under Authentication, click to expand Web and SIP security.
Click Single sign-on (SSO).
Click the Enabled check box to enable single-sign on.
Important: Ensure that both servers use the same primary authentication method for administrative actions. Use the global security and administrative authentication settings and indicate the option to only use the active application authentication mechanism (currently LTPA) for both servers. This is required for SSO configuration.
For more information about enabling single-sign on, see the single sign-on settings information in the IBM WebSphere Application Server Information Center, version 8.0.
Specify your domain name.
Click OK.