5

What are your recommendations for a basic, centralized identity management/SSO service? It must be open source, have a pluggable identity manager (eg: LDAP, DB, openID, etc.) and provide a decent range of API access options (eg: web services, REST, etc.). It must also be clusterable for high availability.

JOSSO? CAS? others?

gavioto
  • 1,695
  • 2
  • 17
  • 38
jnorris
  • 6,350
  • 8
  • 30
  • 33
  • 2
    I've been doing alot of SSO work lately and it seems that Sun Access Manager / OpenSSO seems to be the most popular although I have found OpenSSO to be a PIA. I am looking forward to MS's Geneva Framework for .net http://msdn.microsoft.com/en-us/security/aa570351.aspx currently in beta. – Chad Grant Apr 27 '09 at 06:31
  • When you say "it must be open source" do you mean the source code must be provided or it must be free (as in beer)? –  Apr 24 '12 at 13:23

3 Answers3

1

There are a number of open source SSO solutions, OpenAM/OpenSSO, CAS Server and Shibboleth.

0x4a6f4672
  • 27,297
  • 17
  • 103
  • 140
0

WSO2 as described here. It's absolutely free, Java based and integrates with most of services / apps via various protocols or APIs.

Community
  • 1
  • 1
webcoder
  • 129
  • 1
  • 10
  • 1
    We've been evaluating WSO2 and it's proven to be a bit hard to get it up and running. Presumably, support is where the revenue comes from so take this into account when thinking it's free. – webcoder Jun 18 '14 at 12:57
0

Dont forguet simpleSAMLphp if you looking for SAML support or HybridAuth if you just looking for a SSO library.

smartin
  • 2,957
  • 2
  • 23
  • 33