| With the information technology keep on development, the enterprise has beenbuilding more and more application systems, however, each application has its ownindependent identity module. User information are maintenance by ever applicationsystem and cannot be concentrated to each other.When a user access to every systemneeds to provide proof of identity.This will not only affect the user experience, andalso caused the increase of the system management and maintenance costs.what’smore, the authentication information of application system is easy to illegally ob-tained, it will damage the security of the entire application system.In order to solve these problems, we can use single sign-on system. A singlesign-on system for the enterprise application system provide a unified identity authen-tication access entrance, and establish a unified user management system to managethe user’s basic information, realized the user login, the entire network access.This paper first analyzed the research background and research meaning of thesingle sign-on system, and the common single sign-on solution are analyzed andcompared.Secondly introduced the related theory of single sign-on technology,TheKerberos protocol and CAS has carried on the detailed analysis and comparison, thefinal selection of CAS authentication protocol as a single sign-on model in this pa-per.Then put forward the model of Web single sign-on system based on CAS ac-cording to the actual needs of enterprises.The system adds the access control toCAS,and adds a unified user management module,improve the usability of the wholesystem.Finally implemented the single sign-on (sso) model in the JAVA EE platformunder the SSH framework.The innovation point of this paper is to involve the rights management module,single sign-on system using the LDAP server as authentication server and usingMySQL server as the authorization server.And synchronize user information, andmake the single sign-on system more flexible. |
PDF Full Text Request