Integrating legacy application/data access with single sign-on in a distributed computing environment
First Claim
1. A method of integrating legacy access with single sign-on in a distributed computing environment, comprising steps of:
- establishing a first secure session from a client on a user'"'"'s workstation to a server, wherein the secure session establishment authenticates the user'"'"'s identity from identifying information passed from the client;
storing the identifying information in a security token accessible to the server; and
using the identifying information stored in the security token to authenticate the user for access to a legacy host application or system, whereby the authentication occurs programmatically and does not require the user to re-enter his identifying information.
4 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides methods, systems, computer program products, and methods of doing business whereby legacy host application/system access is integrated with single sign-on in a modem distributed computing environment. A security token used for signing on to the modem computing environment is leveraged, and is mapped to user credentials for the legacy host environment. These user credentials are programmatically inserted into a legacy host data stream, thereby giving the end user the look and feel of seamless access to all applications/systems, including not only modem computing applications/systems but also those residing on (or accessible through) legacy hosts. In addition to providing users with the advantages of single sign-on, the disclosed techniques enable limiting the number of user identifiers and passwords an enterprise has to manage.
-
Citations
19 Claims
-
1. A method of integrating legacy access with single sign-on in a distributed computing environment, comprising steps of:
-
establishing a first secure session from a client on a user'"'"'s workstation to a server, wherein the secure session establishment authenticates the user'"'"'s identity from identifying information passed from the client;
storing the identifying information in a security token accessible to the server; and
using the identifying information stored in the security token to authenticate the user for access to a legacy host application or system, whereby the authentication occurs programmatically and does not require the user to re-enter his identifying information. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system for integrating legacy access with single sign-on in a distributed computing environment, comprising:
-
means for establishing a first secure session from a client on a user'"'"'s workstation to a server, wherein the secure session establishment authenticates the user'"'"'s identity from identifying information passed from the client;
means for storing the identifying information in a security token accessible to the server; and
means for using the identifying information stored in the security token to authenticate the user for access to a legacy host application or system, whereby the authentication occurs programmatically and does not require the user to re-enter his identifying information. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A computer program product for integrating legacy access with single sign-on in a distributed computing environment, the computer program product embodied on one or more computer-readable media and comprising:
-
computer-readable program code means for establishing a first secure session from a client on a user'"'"'s workstation to a server, wherein the secure session establishment authenticates the user'"'"'s identity from identifying information passed from the client;
computer-readable program code means for storing the identifying information in a security token accessible to the server; and
computer-readable program code means for using the identifying information stored in the security token to authenticate the user for access to a legacy host application or system, whereby the authentication occurs programmatically and does not require the user to re-enter his identifying information. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A method of doing business by seamlessly integrating legacy access with single sign-on in a distributed computing environment, comprising steps of:
-
providing function for establishing a first secure session from a client on a user'"'"'s workstation to a server, wherein the secure session establishment authenticates the user'"'"'s identity from identifying information passed from the client;
providing function for storing the identifying information in a security token accessible to the server; and
providing function for using the identifying information stored in the security token to authenticate the user for access to a legacy host application or system, whereby the authentication occurs programmatically and does not require the user to re-enter his identifying information.
-
Specification