Back to Security Pattern Catalog




Password Synchronizer


Classification Key : Exterior Security, Spoofing

Problem

Applications have diverse user account management mechanism. Administering the account management is very difficult if one has to consider all types of application systems. This applies to user credentials (certificates, smart card tokens or even biometric samples) used for authentication and authorization as well. Password has to be synchronized to be usable between systems. This becomes a more important issue in case of SSO. How can password be used between multiple systems?

Solution

Centralize management of synchronizing user credentials across different application systems via programmatic interfaces. Like a hub, issue user account password service commands to all the application systems connected.

Known Uses

A password synchronizer with an LDAP storage.

Related Patterns

Single Sign On Delegator

Source

Sun Book

Tags

Password, Access Control, Single Sign On


 

Last modified: May 05, 2012

Conceived and Maintained by: Munawar Hafiz