Tom Kemp's Centrify Blog

New Updates to our Web Application Support

Friday, March 13, 2009

I have been blogging a bunch lately on our Mac support and on the topic of UNIX privilege user management (aka superuser privilege management) that I have probably been remiss in giving updates on our web application support. We have been busy in this area as well. So here is a quick blog post on a recent update to our web SSO solution that provides authentication and security using Active Directory for Apache and J2EE application servers.

As a reminder, the DirectControl for Apache and J2EE application servers (e.g. WebLogic and WebSphere) are packaged as part of the Centrify Suite Application Edition and they provide the following capabilities:

  • SPNEGO/Kerberos based-SSO to web sites and applications leveraging a user's Active Directory credentials
  • NTLM, BASIC and FORMS authentication mechanisms for accepting a user's AD username and password
  • Coarse-grained role-based authorization to web sites and applications based on AD groups and J2EE roles
  • Personalization of the user's session with custom AD attributes
  • Web access management across domains with Active Directory Federation Services (ADFS)

Our newly released DirectControl version 4.2 for web applications is primarily a bug fix and platforms release based on customer requests and feedback. The primary platform additions included the following:

  • IBM HTTP Server 6.1 (based on Apache 2.0) is now tested and supported across the same platforms as DirectControl for Apache 2.0
  • JDK 1.6 is supported for Tomcat 6.0, JBoss 4.2 and Weblogic 10 (NOTE: Only direct AD authentication is supported, ADFS is known not to work with JDK 1.6)
  • Tomcat, JBoss, Weblogic and Websphere are now supported on Windows server 2003 64-bit and 2003 R2 64-bit, 2008, 2008 64-bit (NOTE: Apache not supported on Windows)
  • Debian 4 32-bit and 64-bit is now supported
  • Ubuntu 6.06 LTS, 8.04 LTS, and 8.1 are now supported
  • RHEL 5.2 is now supported
  • Fedora 9 is now supported (for Apache only)

For a listing of all platforms we support for web applications, click here.

We have also recently extended our SAP platform support (e.g. adding HP-UX); click here to see the latest and greatest list of platforms we support for our Active Directory and SAP integration solution.

Bookmarks: del.icio.usDiggFurlNetscapeYahoo! My WebStumbleUponGoogle BookmarksTechnoratiBlinkListNewsvinema.gnoliaRedditWindows LiveTailrank

< Previous Article: Top Mac Interop Challenge? Survey says ... Active Directory Integration
> Next Article: DirectControl and NFSv4 Security via Kerberos


"The combination of Active Directory and Centrify DirectControl gives us a really powerful single authentication solution across a highly mixed environment. Although there are other ways to do this, we've had good success with this solution."

Bill Hilf
General Manager of Platform Strategy
Microsoft
Quoted in Port 25 magazine
March 31, 2006