Sun OpenSSO Express 8 is an interim release of Sun OpenSSO Enterprise. This release allows users to try out new features without having to wait for the next full OpenSSO Enterprise release. OpenSSO Express Build 8 is available with multiple new features:

Web Container Changes

• Requires JDK 1.6 or later.
• Supports web containers JBoss Application Server 5.1 and Sun GlassFish Enterprise Server v2.1

Beta Administration Console

Includes an alternate Administration Console that allows access to the new OpenSSO Entitlements Service and to use new work flows (common tasks) for Federation and Web Service Security (WSS).

Fedlet Changes

Now supports .NET applications, allowing any SAML 2.0 identity provider to federate with .NET service providers.

Monitoring Service

Collects configuration data and statistics, maintains the information in MBeans, and makes the MBeans available to network management tools using adaptors or connectors. An administrator can display the monitoring data in the MBeans using third-party tools.

Web Services Security (WSS) Changes

Includes new WSS features and the wssagentadmin program to install and manage a WSS agent on a GlassFish or Sun Java System Application Server 9.1 web container.

User Data Store Changes

Configuring the user data store in OpenSSO Express 8 has been simplified for both the GUI Configurator and command-line Configurator. Using MySQL for the user data store is also available as an early access (EA) feature in OpenSSO Express 8.

Entitlements Service

The OpenSSO Express 8 Entitlements Service is a new authorization and policy component with a user interface that provides an easy-to-follow process to define rules for controlling access to applications and web resources. Fine-grained policies and referrals can be created and assign policy creation based on an OpenSSO realm hierarchy. The Entitlements Service is available using the new Beta OpenSSO Administration Console.

Authentication Service Changes

Includes the HMAC-based One Time Password (HOTP) authentication module and resource authentication as part of the Authentication Service framework, without having to call the Gateway Servlet.

Diagnostic Tool

Allows for verification of configuration settings and identification of potential installation or deployment problems.

New Federation Service Features

Includes synchronizing SAMLv2 provider sessions, using the KeyProvider SPI to retrieve any key store instance, and centralized SAML error processing.

Integration of Salesforce.com

Use OpenSSO to enable access to the Salesforce Customer Relationship Management (CRM).

Integration of Google Apps

Allows for access to Google web applications such as Gmail, Google Calendar, Google Docs, Google Video, etc to users in an enterprise domain.

There are a number of resources on each of these new features available from the Release Notes.

"It's worth noting that OpenSSO Express Builds are supported builds, released on an approximately 3 month cycle between Enterprise builds," writes Pat Patterson. "Customers simply buy support for OpenSSO and then choose which build to deploy; the main difference between the two is that we release hot patches and service packs for the Enterprise build, while fixes in the Express build are rolled into the next Express build (no hot patches or service packs). In this way, customers who are keen to deploy the very latest OpenSSO features with support can do so without having to wait up to 12 months for the next Enterprise release."

More Information

OpenSSO Express 8 Release Notes

Download

OpenSSO Web site

OpenSSO Express FAQ

Identity Management Community at java.net

Sun OpenSSO Enterprise [...read more...]

		fullsource
Print Email Current Profile Archive Blog Generate newsletter