Configure Publisher with Single Sign-on (SSO)

Integrating a single sign-on (SSO) solution enables a user to log on (sign-on) and be authenticated once.

Thereafter, the authenticated user is given access to system components or resources according to the permissions and privileges granted to that user. Publisher can be configured to trust incoming HTTP requests authenticated by a SSO solution configured for use with Oracle Fusion Middleware and Oracle WebLogic Server. For information about configuring SSO for Oracle Fusion Middleware, see Securing Applications with Oracle Platform Security Services.

When Publisher is configured to use SSO authentication, it accepts authenticated users from whatever SSO solution Oracle Fusion Middleware is configured to use. If SSO is not enabled, then Publisher challenges each user for authentication credentials. When Publisher is configured to use SSO, a user is first redirected to the SSO solution's login page for authentication.

Configuring Publisher to work with SSO authentication requires that:

  • Oracle Fusion Middleware and Oracle WebLogic Server are configured to accept SSO authentication. Oracle Access Manager is recommended in production environments.

  • Publisher is configured to trust incoming messages.

  • The HTTP header information required for identity propagation with SSO configurations (namely, user identity and SSO cookie) is specified and configured.