SSO
- John Jellema
About Ubisecure SSO
Ubisecure SSO is a single sign-on and access control solution providing extensive authentication for Intranet, Extranet and Web Services.
The intended audience for this documentation is system administrators and system integrators. Basic knowledge of LDAP directories and SQL databases is presumed.
Search SSO
As of SSO 8.2 the term "Agent" has been changed to "Application" for clarity. Documentation isn't yet updated for the change.
As a reader, ignore the resulting conflicts, the terms are interchangeable.
System Overview
The Ubisecure SSO consists of an LDAP database for the Ubisecure Directory and several independent web applications implemented with Java 2 Platform technology:
- Ubisecure SSO Authentication Server (also known as UAS for historical reasons)
- Core SSO engine
- Ubisecure SSO Management (Ubilogin)
- User Interface for delegated management of configuration
- Ubisecure Password application
- Password management tools for end users
- Ubisecure Logviewer
- Web-based log file viewer
- Ubisecure SSO Search
- Web-based tool for searching for users, sites, groups and applications
- OTP Server
- Accounting Service
- Application used to gather and report statistics of authenticated users in your system
- Application used to gather and report statistics of authenticated users in your system
Software Package Structure
Ubisecure SSO includes the following software packages:
- Tomcat
- OpenLDAP on Linux
- Ubisecure Accounting Service Spring Boot application
For specific version numbers, please refer to current release notes.
File System Directory Structure
Relative to the platform-specific base directory, the directory structure of the Ubisecure SSO is organized in the following way:
| Path | Content |
|---|---|
/ | The base directory of the Ubisecure SSO, e.g. |
/tomcat/ | The Tomcat server |
/adam/ | On Windows, the location of the Microsoft ADAM installer |
/openldap/ | On Linux, the location of the OpenLDAP server |
| /openssl/ | On Linux, the location of the SSL library |
| /berkeley-db/ | On Linux, the location of the Berkeley database |
| /template/ | The template directory for the configuration file of the platform |
| /tools/ | The Ubisecure SSO software tools |
/ubilogin/ | The software for the Ubisecure SSO itself |
/VersionInfo.txt | The version information of the Ubisecure SSO and its components |
/setenv.* | Utility script for getting the installation directory information |
/ubilogin/config/ | The directory for the base configuration file of the platform |
/ubilogin/custom/ | Directory for the customized settings including SSO and Accounting Service |
/ubilogin/ldap/ | Ubisecure Directory installation data |
/ubilogin/methods/ | External Authentication methods |
/ubilogin/webapps/ | The Ubisecure SSO’s web applications |
/ubilogin/config.index | List of the locations of Ubisecure Authentication Server’s configuration files |
/ubilogin/setup.* | The setup script for the Ubisecure SSO |
| /accounting/ | Ubisecure Accounting Service root directory |
| /accounting/config/ | Directory for the Accounting Service configuration files |
| /accounting/logs/ | Directory for the Accounting Service log files (default configuration) |