Re: web application authentication options

mark_connolly · ‎03-13-2017

Can Prognosis Web Application form-based authentication be replaced with Integrated Windows Authentication/SPNEGO/Kerberos?

Anon · ‎03-14-2017

Hi Mark,

thanks for posting the question. As of now Prognosis does not support the integrated Windows Authentication yet.
However, our SSO implementation supports SAMLv2.0 which integrates nicely with ADFS if that helps.

Kind regards

Stefan

mark_connolly · ‎03-15-2017

Thanks for the answer. In our case, we have AD FS deployed in our environment. Prognosis will be the SP and our existing AD FS will be the IdP. The user identity asserted to Prognosis will be the user's userprincipalname (or some other directory name attribute). I see mention of Forgerock OpenAm in the security documentation. Is OpenAm a requirement for SAML SSO to Progress, or can existing infrastructure be used with no additional software?

Anon · ‎03-15-2017

To me it does not seem like a requirment but an alternative to ADFS but I will try to get some other folks involved here to provide you a more detailed answer.

chris_harward · ‎03-15-2017

Yes OpenAM is an alternative to ADFS, both implement the SAML v2.0 protocol Prognosis supports. We have successfully deployed Prognosis using SSO in environments using ADFS.

web application authentication options

web application authentication options