They have a few hundreds applications (web-based and non web-based). Thus we need to have a concise selection criteria for them.
There are 2 types of policy agents available from OpenSSO:
1. Web Policy Agent
2. J2EE Policy Agent
In order to integrate applications for Single Sign-On with OpenSSO, they must be:
2. authenticate with a common authentication repository
3. supported by available policy agents from OpenSSO
If applications are customizable, Web Policy Agent will be chosen. Otherwise, if applications are pure J2EE-based that utilize the Java Authentication and Authorization Service (JAAS), then J2EE Policy Agent will be chosen.
If the above 2 criteria cannot be met, then ESSO will be chosen.