[jboss-user] [Security & JAAS/JBoss] - Re: JBoss federated SSO setup

sohil.shah@jboss.com do-not-reply at jboss.com
Tue Jul 1 09:08:35 EDT 2008

anonymous wrote : 
  | Is that true the domain in the server.cfg.xml file should match the security domain associated with the web apps (which is what I did)? 

The domain for server.cfg.xml has nothing to do with the security domain specified with the low level JAAS authentication/login module setup.

This value of domain in jboss-federation-server.sar/conf/server.cfg.xml must be the actual web domain at which the web application is hosted

Also part of debugging make sure the SAML token is issued at the domain level. Like for instance ssosite1.com or ssosite2.com depending on which application you log into


View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4161777#4161777

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4161777

More information about the jboss-user mailing list