Single Sign On

Single Sign On

Single Sing On (SSO) means that you need only once  to authenticate yourself for different applications.  Authentication is the process to identify yourself for an application by giving your loginname (NetID) and your password. In the SSO environment of  TU Delft this means that you logon with your NetID for one application and then you can go to another application in the SSO environment, without authentication. An example of such an application is Blackboard. When you leave (logoff) such an application, you still will be in the SSO environment, where you will be asked to logoff or not. When you do logoff, you leave the SSO environment and SSO will not be possible any more until you login for another application of the SSO environment. To illustrate this a schematic outline is given below.

 

A SSO session expires after 3 hours, to prevent  abuse from third parties. When you leave your workplace, please logoff for all your applications and for the SSO environment, especially when you use a public workplace!

 

There are only webapplications in the SSO environment of TU Delft. Webapplications are applications which are accessable by a webbrowser.

 

Single Sign On doesn’t mean that you can use all applications in this environment. Besides authentication (tell who you are) you need authorization. Authorization is the verification of the rights or roles you have for using the application. For instance, a registered student has the right to use the application for enrollment for examinations (TAS), but a staff member doesn’t. Authorization is managed by the application.

 

Single Log On (SLO) is another term used in this context. SLO means that you use the same credentials for different applications. Credentials is a term used for the combination loginname (username) / password combination. The ambition of TU Delft is to use the NetID for as many applications as possible. The advantage of SLO is that you have to remember only one username/password, the advantage of SSO is that you use only one username/password.

 

 

Schematic outline
In figure below is stated which sessions are valid in which moments and when SSO is possiile en when not.

 

출처 : 네덜란드 TU Delft 대학 홈페이지(http://cms2.tudelft.nl/live/pagina.jsp?id=cabdfacb-9b20-441a-8313-6361b34d7382&lang=en)

[출처] [본문스크랩] Single Sign On|작성자 퍼니코더