Windows & BMC Remedy Single Sign On Notes
Windows Access Token
An access token contains the security information for a logon session. The system creates an access token when a user logs on, and every process executed on behalf of the user has a copy of the token. The token identifies the user, the user's groups, and the user's privileges. The system uses the token to control access to securable objects and to control the ability of the user to perform various system-related operations on the local computer. There are two kinds of access token, primary and impersonation.
We can use the token to get the logonSID. logonSID can be accessed via the GetTokenInformation from the Access Token Object.
Microsoft SSPI (Security Support Provider Interface)
Projects of Interest
- SPNEGO SourceForge Project
- AppliedCrypto Articles on SPNEGO and SSO
- Java Based SSO (IBM Developer Works Article)
- NTLM Basics
Windows Auth Notes
page revision: 11, last edited: 06 Dec 2010 15:55