We have been on LSF9 for a while now and are looking into moving our users from LID to Portal. We are a Windows shop and have LSF9 bound to AD. All of our employees including our Lawson application users use ESS/MSS as well. Some access ESS from workstations logged into Windows with generic account and some access ESS from their individual windows accounts. We also expire user Windows account passwords on a regular basis. Based on this, is it possible and or realisitc to try to configure Lawson to use true SSO so application users logged into the windows domain with their personal accounts do not need to re-enter their credentials for Lawson?
That article is for 8.0.3 platforms BTW. And it doesn't really mention "Single Sign On" within the article. Joe: If you're asking is it possible for users to log on to the Windows domain, is there some way then to set up Lawson so they *won't* have to *manually* log on to Lawson portal- hmmmm... Do you really want that? You can I guees somehow store/cache user ID/PW in log in screens within I.E. so that once your logged into the domain, and then you point to your Lawson portal within your browser, it will automatically log you in. I know that it's possible to set up a scenario, so that once you're logged into Portal, you can open up new Portal sessions (under that same ID) without having to log in again. This is in I.E. 6.x. Try it in I.E. and select File>>New>>Window (after your inititially logged into Lawson Portal) and see for yourself. I think within the context of *Lawson* Single Sign On for LSF 9, it means that you log on to *Lawson Portal* once (the single), after initially logging into the Windows domain, e.g. Your desktop, it will then authenticate to all Lawson services that user is attached to (such as ESS, RSS, LBI, etc.) so you won't have to log in individually again to each one of them until you are logged out, or timed out. As far as password expiration on a regular basis on your Windows domain, if you are set up with a LDAP bind, then the expiration (and also the new reset password) will flow down to Lawson authentication also. -Roger