| Institution |
Client SW |
Authentication |
Authorization |
Single Sign-on |
Web/OS Reqs |
URL |
| |
|
|
|
|
|
|
| Stanford |
Kerberos, S-IDENT, SSL |
Kerberos |
Extended HTACCESS, LDAP |
Y - web and app |
Apache |
http://www.stanford.edu/services/webauth |
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| |
SSL only |
Kerberos via auth page |
Extended HTACCESS, LDAP |
N - per server |
Apache |
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| Harvard |
SSL |
PGP/PIN |
|
N - per app |
|
http://wwwdev2.fas.harvard.edu/PIN/authen |
| (in development) |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| CMU |
SSL |
Kerberos via auth page |
app based |
Y - for unix |
Apache, Netscape |
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| |
Kweb Plug-in |
Kerberos |
app based |
Y - for unix and PC with kclient Mac
- per app |
Apache, Netscape |
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| |
Java applet |
Java, Kerberos |
app based |
Y - for unix |
Apache, Netscape |
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| Columbia |
SSL |
Kerberos |
via LDAP |
by partition |
Apache |
|
| |
|
|
|
|
|
|
| |
Unix Netscape plug-in |
Kerberos/X509 |
broker - LDAP |
Y |
Apache, Netscape soon |
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| UC System |
SSL |
Cert |
attribute server coming |
|
|
|
| (field testing) |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| U of MD |
ssl |
Kerberos |
Extended HTACCESS |
n/a |
Apache |
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| MIT |
Side car (going away) |
Kerberos 5 |
|
N |
|
|
| |
|
|
|
|
|
|
| |
SSL |
X509 cert |
app based (table driven on any auth user) |
|
|
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| Penn State |
Gradient, afs |
DCE, K5 |
DCE security groups |
|
Apache (OLE mod) |
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|
| |
|
|
|
|
|
|