SSO (Single Sign On) series (1) -- SSO introduction, sso -- sso

Source: Internet
Author: User

SSO (Single Sign On) series (1) -- SSO introduction, sso -- sso

No matter what type of website, there will be such a problem after it reaches a certain scale: for example, if we have N systems, we need N pairs of different user names and passwords in the traditional mode, originally, the development of these systems can bring us good benefits, users are not convenient to use, each time you need to enter a different user name and password for identity authentication. Especially for enterprises with a large number of application systems and a large number of users. The problem occurs not because of system development problems, but because of the lack of a single user management platform.


SSO solves the problem well. By accessing the application, you can access other systems or applications after logging on. In multiple application systems, users only need to log on once to access all mutually trusted application systems. It includes the login mechanism that can map this logon to other applications for the same user.

SSO is one of the most popular solutions for enterprise business integration.


SSO terminology

TGT: Ticket Granting Ticket, user identity authentication Ticket

ST: Service Ticket, Service license Ticket

TGC: Ticket Granting Cookie, which stores the cookie of the user identity authentication credential Ticket


There are three roles in the SSO system:

1. Multiple users

2. Multiple Web applications

3. An SSO authentication center

All logins are performed in the SSO authentication center.

The SSO authentication center uses some methods to tell the Web application whether the current user is authenticated or not.

The SSO authentication center establishes a trust relationship with all Web applications.


SSO benefits

1. Convenient for users

The user only needs to log on once and access multiple times. Good user experience. One account and one password can access multiple web applications, and the Single Sign-On process is not felt.

2. Convenient Administrator

The Administrator only needs to manage a set of data to facilitate management and avoid management vulnerabilities.

3. Simplified application system development

When developing a new application, you can use single sign-on for user authentication, which simplifies the development process. Single-point logon provides a unified authentication platform for single-point logon. Therefore, the application system does not need to develop user authentication programs.



SSO advantages: it provides an out-of-the-box SSO solution, which makes the transformation of the application system very small, and even makes the user feel that the Single Sign-On component is used, you only need to perform simple configuration to have the SSO function. Therefore, SSO is flexible, scalable, and less invasive to application systems.

Next, we will continue the five SSO access processes.

Copyright Disclaimer: This article is an original article by the blogger and cannot be reproduced without the permission of the blogger.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.