SSO + Cookie Authentication
This authentication design can be used when you have MSS 2010 in your environment, but have chosen not to use the Secure Store service and the SharePoint servers and Business Analytics Servers for your mashup sites are located in the same domain.
Same Domains
Domains are the same for SharePoint and Business Analytics Servers when the domain names fit either of these patterns:
*.domain-name.type
domain-name.type:different-port
For example, if the SharePoint server domain is site1.com, then a Business Analytics Server in the domain ms.site1.com or site.com:8080 would be in the same domain.
Note: | The patterns for matching domain names are a restriction of Internet browsers. |
With cookie forwarding, a user must login once with a Business Analytics Server. These credentials are stored as a cookie in the browser where the user is working in SharePoint. This cookie is passed by the browser to the Business Analytics Server in subsequent requests so no further login challenges are issued.
Note: | Business Analytics Servers use only basic user credentials (username and password). They do not accept NTLM credentials which include Windows domains as part of the user name. |