Single Sign-On Authentication for My webMethods
A My webMethods Server (MWS) application, such as webMethods Monitor or webMethods Optimize for Process, may require access to data originating from Integration Server. Before the MWS application can access this data, MWS must establish a connection with Integration Server. The connection takes place as follows:
A login request is initiated from MWS to
Integration Server.
The login credentials of the MWS user are authenticated by
Integration Server.
An
Integration Server session is established.
In this situation, the user initiating the request does not need a set of Integration Server credentials. The credentials stored in the MWS user database can be used to authenticate this request. This capability is called Single Sign-On (SSO).
Important:
For SSO to work, MWS Central User Management must already be configured. For more information, see Administering My webMethods Server.
The underlying mechanisms for validating the login credentials of the MWS user include the Java Authorization and Authentication Service (JAAS) and the OpenSAML 1.1 library. The OpenSAML library is used to authenticate the MWS user, by resolving a SAML artifact representing the MWS user to Integration Server.