Using Identity Assertion SSO Kerberos in a Microsoft domain
Identity Assertion is a provider mechanism that permits users to trust your identity using a token stored in your machine, by the Simple and Protected Negotiation Mechanism (SPNEGO). Here, your identity is exchanged with the server by HTTP transaction in silent mode (Single Sign-On) without entering the username and password.
You can use these pages to implement your security in a preexisting context using a predefined structured architecture with users and groups.
In our case, we will analyze a SPNEGO Single Sign-On configuration in a Microsoft domain context using the Kerberos native token and Oracle JRockit JVM embedded with WebLogic Server.
WebLogic Server supports Kerberos tokens even if you install it in a server that is not Microsoft OS-based, for example, Linux OS. This is because the trust relationship will be done by the Oracle WebLogic Server security layer and not by the Operating System.
