[unisog] Centralized auth for web servers

Kevin Coffman kwc at citi.umich.edu
Mon Jul 24 22:28:40 GMT 2006

On 7/24/06, James J. Barlow <jbarlow at ncsa.uiuc.edu> wrote:
> Was wondering if anyone else has any experience in a centralized web
> authentication application?  We seem to have more and more servers
> being set up at our site that accept kerberos passwords (which authenticate
> against our centralized kerberos servers), and it's making me a bit
> nervous.  I'm worried about one of those servers getting compromised
> and then a miscreant could snag lots of peoples kerberos passwords.
> I'd like a solution where the different web servers could use one server
> for authentication (which would then be centrally managed), and then
> use that authenticaton token/cookie, or whatever, for access to their pages.
> We have looked at Bluestem (https://www-s.uiuc.edu/bluestem/notes/overview.html)
> and was wondering what other sites may be using.  TIA.

Our home-grown system, cosign, can be found here:

More information about the unisog mailing list