Free Sample
+ Collection


Indira Thangasamy

This is your logical, clearly written guide to implementing Single Sign-On to secure your web applications using OpenAM. It makes light work of the complexities by explaining things with real-world examples.
RRP $26.99
RRP $44.99
Print + eBook

Want this title & more?

$12.99 p/month

Subscribe to PacktLib

Enjoy full and instant access to over 2000 books and videos – you’ll find everything you need to stay ahead of the curve and make sure you can always get the job done.

Book Details

ISBN 139781849510226
Paperback292 pages

About This Book

  • The first and the only book that focuses on implementing Single Sign-On using OpenAM
  • Learn how to use OpenAM quickly and efficiently to protect your web applications with the help of this easy-to-grasp guide
  • Written by Indira Thangasamy, core team member of the OpenSSO project from which OpenAM is derived
  • Real-world examples for integrating OpenAM with various applications

Who This Book Is For

If you are a security architect or a solution developer responsible for the design and development of web-based enterprise applications that need to provide authentication, authorization, and audit facilities along with SSO capabilities, then this book is for you. You do not require any prior knowledge of OpenAM to read this book. Familiarity with Java will be helpful, but is not essential.

Table of Contents

Chapter 1: Getting Started
History of OpenSSO
Chapter 2: OpenSSO Deployment and Configuration
Deployment requirements for OpenSSO web application
Configuration store versus Identity Store
How to obtain OpenSSO
Configuring OpenSSO
OpenSSO–configuration choices
OpenSSO release and support model
Chapter 3: Administrating OpenSSO
Administration interfaces
Accessing the administrative console
Console views and privileges
Customizing the console
Chapter 4: Authentication and Session Service
Authentication process
Authentication modules, instances, and chains
Authentication modules
Configuring Tomcat in SSL using CA signed certificate
Adding custom authentication modules
Session Service
Chapter 5: Password Reset and Account Management
Account lockout
Configuring account lockout
Applying a password reset
Chapter 6: Protecting a Simple Web Application to Provide SSO
OpenSSO Policy Framework
Protecting a sample application on Tomcat
Chapter 7: Integrating Salesforce and Google Apps
Integrating OpenSSO with Salesforce applications
Integrating with Google Apps
Chapter 8: Identity Stores
Identity store types
Caching and notification
Supported identity stores
Chapter 9: RESTful Identity Services
Invoking REST interfaces
Identity CRUD operations
Updating identities
Other REST interfaces
Chapter 10: Backup, Recovery, and Logging
Backing up configuration data
Test to production
Chapter 11: Troubleshooting and Diagnostics
OpenSSO diagnostic tools

What You Will Learn

  • Build OpenAM from the source
  • Configure OpenAM in a high availability scenario using a load balancer
  • Obtain support for your OpenAM deployment
  • Learn how to administer OpenAM using UI and command-line tools
  • Create custom privileges for different user levels
  • Set up and configure authentication modules
  • Learn about SSO session properties and its life cycle
  • Implement SSO to protect web applications using OpenAM
  • Install and configure OpenAM policy agents for Apache Tomcat
  • Pass attribute values as Cookies, headers, and response attributes
  • Integrate Salesforce and Google Apps with OpenAM infrastructure using SAMlv2 protocol
  • Use REST-based identity web services to perform authentication, authorization, and audit
  • Perform OpenAM backup and recovery
  • Configure audit logging for OpenAM using Oracle and MySQL
  • Configure secure logging for OpenAM
  • Troubleshoot OpenAM
  • Configure diagnostic tools for OpenAM

In Detail

OpenAM is an open source continuation of the OpenSSO project that was taken over, and later scrapped, by Oracle. OpenAM is the only commercial-grade, feature-rich web application that provides SSO solutions. It has a variety of features and a powerful Single Sign-On capability, but the implementation can be tricky, and the unorganized and incoherent online documentation is not very helpful.

The OpenAM book will serve as a guide to everything you need to know to get started with implementing Single Sign-On using OpenAM to protect your web applications, along with real-world examples.

The author's extensive experience in testing and troubleshooting OpenAM enables him to share insights on how the product works, its strengths, its weaknesses, and some inside information.

If you are reading this, you probably want to protect your web application using OpenAM. The book starts off with an introduction to OpenAM and describing the core features and the kind of problems that can be solved by OpenAM. Then it provides you with detailed instructions on how to protect your web applications by using OpenAM server and policy agents. You will also learn about the user interface elements in order to manage OpenAM successfully. You'll understand the concepts of identity web services provided by OpenAM. There are examples in the book that describe how the REST-based identity services can be invoked and utilized. In the final chapters, you will find detailed discussions about backup, recovery, and audit logging.

The book concludes by discussing some of the common OpenAM problems and tips to troubleshoot them. Although the project name has changed from OpenSSO to OpenAM, the product screen and file names still reflect OpenSSO. Hence, you will encounter the term "OpenSSO" throughout the book.


Read More

Recommended for You

Open Source Identity Management Patterns and Practices Using OpenAM 10.x
$ 14.99
Instant OpenNMS Starter
$ 14.99
Managing and Customizing OpenCms 6 Websites
$ 12.00