The information application system of Tuha Oilfield has increased largely,there are several different types of applications, and most of them use different authentication strategies to sign on. Thus it is complicate for the users to manage these applications and remember all user passwords. However these applications are necessary for the company. Also it is obviously unrealistic to change the authentications by modifying their codes, since the in-depth analysis for each application should be made.In order to integrate the enterprise's applications, the solution of Single Sign On (SSO) which based on B/S architecture is proposed for Tuha Oilfield. In this system, Active Directory is used to manage SSO user information, Oracle database is adopted to store the secondary user information (including the application properties, authentication strategies, such as user name and password) and other correlative information, and the traditional C/S application( including Windows application, Ftp and Telnet) and Web application are integrated into B/S mode. So the user can invoke the applications by IE and don't need to input user's own username and password, which can improve the availability and manageability of the applications as well as the security of user access.The entire system is composed of several subsystems such as console, accessing application based on B/S, passwords synchronization, SSO-user... |