I am architecting a custom document management solution using DFS services on the latest platform D6.5 SP2 but i am stuck on how to implement SSO(Single Sign On) which is the key requirement from the client. SSO solution is a little unique in a way that users of the solution will be using smart card to log into this web application instead of username/password.
I am thinking to develop a DFS web service to read the client certificate from the request that is already saved in the documentum database, based on the certificate info , will pull the user name and create login ticket for the user using a super user account and pass the ticket instead of the the password for authentication.
However, we have inline username/password approach(that means user/pass is saved in the documentum database instead of Active Directory) and I am not sure if ticket approach will work here.
Here is the platform information.....
- windows 2003 sp2
- SQL Server 2005
- .NET 2.0
- .NET productivity layer
- D6.5 SP2
I will highly appreciate if somebody comments on the approach or put me on the right track to achieve the goal.
Thanks,
Amjad
