Vivek Agarwal’s Portal/Java Blog

An IBM Gold Consultant’s weblog about IBM, Lotus, WebSphere, J2EE, IT Processes, and other IT technologies

Posts Tagged ‘SSO’

Need to decode WebSphere/Domino LTPA token for SSO?

Posted by Vivek Agarwal on July 15, 2008

I needed to implement Single Sign-On between IBM WebSphere Portal and HP Operations Dashboard (HPOD) without using a SSO product, and figured that we could do that using the LTPA token generated by WPE on login to the Portal. For LTPA token based SSO to work, we need to be able to decode the LTPA token on the HPOD front – HPOD is based on Jetspeed – in other words, we are looking at implementing SSO between WebSphere and Jetspeed. I was just getting ready to look up some info that I have from Jerry Cuomo on the LTPA token format, when I tried a quick Google search and found an even better answer. I stumbled upon a blog entry and functional code for LTPA token decoding at http://offbytwo.com/2007/08/21/working-with-ltpa.html. I downloaded the code, exported the LTPA keys from a test WPE server, copied the 3DESKey and our LTPA encryption password into LtpaUtils, logged in to the WPE test server, determined the LTPA token cookie value for test purposes, and was able to decrypt it just fine using LtpaUtils. And thanks to Cosmin, all of this took about 20 minutes!

Advertisements

Posted in HP OpenView, WebSphere, WebSpherePortal | Tagged: , , , | 23 Comments »

Unable to access a network share using Windows SSO?

Posted by Vivek Agarwal on June 27, 2008

We use an inexpensive NAS device from Iomega (StorCenter Pro 150d) in our office for personal/test server backups. This has been operational for more than a year with minimal to no issues. We had tied the device to our local Windows domain for user authentication and that was trivial to set up as well. Today, we started having issues with users being prompted to login when accessing the 150d as a network share even after logging in to the Windows domain, specifying their correct credentials, and immediately being prompted to login again. Obviously, not very functional!

Read the rest of this entry »

Posted in Windows | Tagged: , , , , | 2 Comments »