Working with Single Sign-on Domains

The main purpose of a Single Sign-on domain (or SSO domain) is to allow different methods for user authentication for different applications within the system. An SSO domain includes a primary service, a set of reference services, and specifications that determine user access. The primary service properties determine the authentication method for all service users in the domain.

A Infor Lawson Core Technology Environment has a single implicit domain. In contrast, if you have a Infor Lawson Core Technology Environment federated with a Landmark Environment, your overall system may have multiple SSO domains that were set up through the Landmark Environment. Through the ssoconfig utility, you can get a list of the existing SSO domains, and you can import and export the SSO domain definitions.

Note: The ssoconfig utility also provides options in the Infor Lawson Core Technology Environment for adding, updating, and deleting SSO domains. These are for use with configuring LDAPBIND authentication.

See the Infor Lawson Authentication Configuration Guide. In other cases, these options are currently for Infor internal use only.