Outlook connector access manager, radius, SSO
Hello,
I have question I was unable to find answer anywhere. We have customer who wants JES with webmail and outlook connector while both are able to authenticate againts radius. I'm sure it's no problem in case of communication express because it is using access manager which in turn support radius authentication module.
There is problem with outlook connector IMAP authentication (since outlook calendar client is using UWC there is also no problem). Is there a way to authenticate IMAP against access manager.
Save password for IMAP for users and let the users provide only calendar password is not solution, because we use one time password for users authentication.
One more think. I would be nice if this works as a SSO. Which means if users provide password for one service (imap,calendar) and have access to both
Thanks in advance for any advice.
martin
[912 byte] By [
xmartin5] at [2007-11-26 11:07:00]
# 1
Messaging Server's IMAP authentication is direct with LDAP, and is done by attempting to BIND to ldap with the user's uid and password.
I don't claim to know Radius, at all, so, if that's a help, good. . .
You may want to look further into what is going wrong with your iMAP autentication problem.
# 3
Problem is that authentication component is not in fact radius, it is RSA Authentication server (one time password autnetication server), since access manager does not support RSA native protocol, RSA offers to communicate with their server using radius protocol.
So in webmail scenario it is like this: client access UWC, uwc authenticate against access manager, access manager ask RSA ACE server using radius and everybody is happy.
Problem is that outlook connector is ommiting access manager for mail and calendar. Adress book is using UWC. I do not see the point why sun implemented outlook connector like this. It would be nice if connector use UWC for every service.
