Back Forward Single Sign-on

Using the single sign-on (SSO) feature, a user authenticated by an external application can become authenticated to Process Commander without providing another user ID and password. This feature can improve user productivity and allow better control over passwords. This feature uses a specially formatted URL and information in an Application ID data instance (Data-Admin-AppID class).

See PDNAuthentication in Process Commander, a document in the Integration area of the Pega Developer Network, for information on alternatives to the normal log in form. See also PDNPRKB-24115 How to implement Single Sign-on using SPNEGO and JAAS. (SPNEGO is an acronym for Simple and Protected GSS-API Negotiation Mechanism, used in Microsoft Windows.)

AdvancedYour authentication activities for HTTP communication can use the pxRequestor.pxHTTPServletRequest property (of mode Java Object). This is a facade object that provides most of the information received about the incoming HTTP request. A few operations are not allowed:

Despite these limitations, an activity can access the object to obtain cookie and header information.

NoteThe pxHTTPServletRequest property is created only when a custom authentication activity runs. To reduce memory demand, this property is not present during other requests.

Definitions LDAP, requestor page
Related topics About Application ID data instances

zzzDefinitions — S