Multi domain single sign on with IWA and EBS
Hello,
We have the following architecture for a single sign on requirement.
1. Two OID instances with Identity Manager Infrastructre installed and sharing the same metadata repository on a sepearate database machine.
2. One load balancer connecting the OID servers.
3. Two clustered Access&Identity Server instances connected to the load balancer with ldap port.
4. Two separate EBS instances that are serving to different user sets.
5. Two separate IIS instances on different domains.
The requirement is that using IWA, user logs in to his computer and clicks on EBS logon link, gets automatically logged on to the EBS.
All OID and Access Server cluster configurations are fine with one instance of EBS, IIS on one domain.
But I am having troubles to implement the requirement with multiple domains.
First question is , is it possible to protect the same url with two different authentication schemas ?
Second, I have tried multiple domained architecture explained here http://download.oracle.com/docs/cd/B28196_01/idmanage.1014/b25990/v2sso.htm, but I am not sure that's what I need.
Any kind of suggestion & help is highly appreciated...
Thank you
Ece