More Information
  • Build OpenAM from the source
  • Configure OpenAM in a high availability scenario using a load balancer
  • Obtain support for your OpenAM deployment
  • Learn how to administer OpenAM using UI and command-line tools
  • Create custom privileges for different user levels
  • Set up and configure authentication modules
  • Learn about SSO session properties and its life cycle
  • Implement SSO to protect web applications using OpenAM
  • Install and configure OpenAM policy agents for Apache Tomcat
  • Pass attribute values as Cookies, headers, and response attributes
  • Integrate Salesforce and Google Apps with OpenAM infrastructure using SAMlv2 protocol
  • Use REST-based identity web services to perform authentication, authorization, and audit
  • Perform OpenAM backup and recovery
  • Configure audit logging for OpenAM using Oracle and MySQL
  • Configure secure logging for OpenAM
  • Troubleshoot OpenAM
  • Configure diagnostic tools for OpenAM

OpenAM is an open source continuation of the OpenSSO project that was taken over, and later scrapped, by Oracle. OpenAM is the only commercial-grade, feature-rich web application that provides SSO solutions. It has a variety of features and a powerful Single Sign-On capability, but the implementation can be tricky, and the unorganized and incoherent online documentation is not very helpful.

The OpenAM book will serve as a guide to everything you need to know to get started with implementing Single Sign-On using OpenAM to protect your web applications, along with real-world examples.

The author's extensive experience in testing and troubleshooting OpenAM enables him to share insights on how the product works, its strengths, its weaknesses, and some inside information.

If you are reading this, you probably want to protect your web application using OpenAM. The book starts off with an introduction to OpenAM and describing the core features and the kind of problems that can be solved by OpenAM. Then it provides you with detailed instructions on how to protect your web applications by using OpenAM server and policy agents. You will also learn about the user interface elements in order to manage OpenAM successfully. You'll understand the concepts of identity web services provided by OpenAM. There are examples in the book that describe how the REST-based identity services can be invoked and utilized. In the final chapters, you will find detailed discussions about backup, recovery, and audit logging.

The book concludes by discussing some of the common OpenAM problems and tips to troubleshoot them. Although the project name has changed from OpenSSO to OpenAM, the product screen and file names still reflect OpenSSO. Hence, you will encounter the term "OpenSSO" throughout the book.

  • The first and the only book that focuses on implementing Single Sign-On using OpenAM
  • Learn how to use OpenAM quickly and efficiently to protect your web applications with the help of this easy-to-grasp guide
  • Written by Indira Thangasamy, core team member of the OpenSSO project from which OpenAM is derived
  • Real-world examples for integrating OpenAM with various applications
Page Count 292
Course Length 8 hours 45 minutes
ISBN 9781849510226
Date Of Publication 25 Jan 2011


Indira Thangasamy

Indira Thangasamy is currently serving as a software development senior manager at Oracle Corporation, managing the Fusion middleware access management quality engineering organization. Indira spent over a decade at Sun Microsystems Inc. in various roles. He has been associated with the OpenSSO product since its inception and has been instrumental in delivering a high-quality product to the customers. Indira is very passionate about technology. He graduated with an M.Tech. in Computer Science, started his career as an embedded systems developer in Germany, and later served as a security consultant at Wells Fargo before joining