https://connect.hyland.com/t5/alfresco-archive/alfresco-sso-and-wcservice/m-p/279753#M232883 <HTML><HEAD></HEAD><BODY><P>You can enable the external authentication subsystem that allows you to put Alfresco behind a proxy and making any call with a decorated HTTP Header with the username, this means that Alfresco doesn't need authenticate the user. This is a scenario where you have an external identity manager that is the main responsible for authenticating user. After the authentication any request against Alfresco will be done with the added HTTP header.</P><P>This is the best way to configure SSO in Alfresco:</P><P><A href="http://docs.alfresco.com/5.1/concepts/auth-external-intro.html" title="http://docs.alfresco.com/5.1/concepts/auth-external-intro.html" rel="nofollow noopener noreferrer">Configuring external authentication | Alfresco Documentation</A> </P><P></P><P>Another way is to invoke the Login webscript that will return an authentication token that you can use for any other call related to the same user session:</P><P><A _jive_internal="true" href="https://community.alfresco.com/docs/DOC-5166-web-scripts#w_authenticating" title="https://community.alfresco.com/docs/DOC-5166-web-scripts#w_authenticating" rel="nofollow noopener noreferrer">https://community.alfresco.com/docs/DOC-5166-web-scripts#w_authenticating</A></P><P></P><P>Otherwise you can enable SSO using Kerberos:</P><P><A href="http://docs.alfresco.com/community/concepts/auth-kerberos-intro.html" title="http://docs.alfresco.com/community/concepts/auth-kerberos-intro.html" rel="nofollow noopener noreferrer">Configuring Kerberos | Alfresco Documentation</A>&nbsp; </P><P></P><P>Hope this helps.</P></BODY></HTML> Fri, 21 Oct 2016 11:57:50 GMT openpj 2016-10-21T11:57:50Z https://connect.hyland.com/t5/alfresco-archive/alfresco-sso-and-wcservice/m-p/279752#M232882 Hi Guys!I want to use Alfresco and an external tool to communicate via SSO and Kerberos.I have read somewhere that I can use the wcservice to execute REST calls via SSO. Does this still exist, if yes how it works?Best regardsKaffi Fri, 21 Oct 2016 11:37:15 GMT https://connect.hyland.com/t5/alfresco-archive/alfresco-sso-and-wcservice/m-p/279752#M232882 kaffi 2016-10-21T11:37:15Z https://connect.hyland.com/t5/alfresco-archive/alfresco-sso-and-wcservice/m-p/279753#M232883 <HTML><HEAD></HEAD><BODY><P>You can enable the external authentication subsystem that allows you to put Alfresco behind a proxy and making any call with a decorated HTTP Header with the username, this means that Alfresco doesn't need authenticate the user. This is a scenario where you have an external identity manager that is the main responsible for authenticating user. After the authentication any request against Alfresco will be done with the added HTTP header.</P><P>This is the best way to configure SSO in Alfresco:</P><P><A href="http://docs.alfresco.com/5.1/concepts/auth-external-intro.html" title="http://docs.alfresco.com/5.1/concepts/auth-external-intro.html" rel="nofollow noopener noreferrer">Configuring external authentication | Alfresco Documentation</A> </P><P></P><P>Another way is to invoke the Login webscript that will return an authentication token that you can use for any other call related to the same user session:</P><P><A _jive_internal="true" href="https://community.alfresco.com/docs/DOC-5166-web-scripts#w_authenticating" title="https://community.alfresco.com/docs/DOC-5166-web-scripts#w_authenticating" rel="nofollow noopener noreferrer">https://community.alfresco.com/docs/DOC-5166-web-scripts#w_authenticating</A></P><P></P><P>Otherwise you can enable SSO using Kerberos:</P><P><A href="http://docs.alfresco.com/community/concepts/auth-kerberos-intro.html" title="http://docs.alfresco.com/community/concepts/auth-kerberos-intro.html" rel="nofollow noopener noreferrer">Configuring Kerberos | Alfresco Documentation</A>&nbsp; </P><P></P><P>Hope this helps.</P></BODY></HTML> Fri, 21 Oct 2016 11:57:50 GMT https://connect.hyland.com/t5/alfresco-archive/alfresco-sso-and-wcservice/m-p/279753#M232883 openpj 2016-10-21T11:57:50Z