Tuesday, June 8, 2010

Sun Access Manager SSO and Passlogix ESSO

I received an SMS from my client asking for clarification:

Just to check with you for understanding ... Sun Access Manager is for access control of web-based applications right? If the client has SSO like Passlogix on PC, how does Access Manager interact with the client?

Now, we need to understand there are 2 components - Sun Access Manager and Passlogix . They are quite similar in that they assist in Single Sign-On. However, there are some differences which we need to take note.

Firstly, we need to correct the term Passlogix. To be more precise, we are talking about Passlogix v-GO Single Sign-On

  • Sun Access Manager can only perform Web-based Single Sign-On. Only web-based applications are suitable candidates for SSO.

  • Passlogix v-GO Single Sign-On is a ESSO (Enterprise Single Sign-On) product. Being ESSO-enabled, it supports a wider range of applications.
    e.g. - Web-based applications
           - Windows 32-based applications
           - Host/mainframe systems
           - Applications running on Terminal Services
           - Applications running on Citrix Servers

v-GO SSO looks better, no?

  • You need to install a v-GO SSO Client Agent on each and every PC. 
  • If there is a patch or upgrade, you need to remember to apply on each and every PC.

There's always pros-vs-cons which every enterprise has to evaluate before deciding on the technology to adopt.

Now that we understand the differences, I'll attempt to answer my customer's question in my next blog.


1 comment:

  1. Passlogix V-Go SSO, in fact does have to be installed on every PC in the enterprise, however this is generally done via an MSI or similar packaging method and is quite a simple process. User credentials sit in the active directory folder or a similar database, depending what authentication method then customer is using. Most enterprise customers will choose V-Go SSO due to the robust nature of the product, its ability to address almost every aspect of single sign on and the longevity in the market of the technology and the company. Other solutions fall short in their ability to address sign on to specific apps and some add latency to the network or require appliance devices to be installed, therefore increasing overhead and management in general.