The Medical University of South Carolina   About MUSC  ·  Education  ·  Medical Center  ·  Research  ·  Library   

Search
idam menu items


Support Desk, 792-9700
   helpdesk@musc.edu

Identity Management
Documents
   IdAM Overview
   IdAM Charter (pdf)
   IdAM Standards
   Glossary
What's Next?
    Role Based Access
    Single Sign-on

NetID
   NetID Overview
   Managing Your Account
   Step-by-step Guide (pdf)
   Standards Summary
NetID Documents:
    Catalyst Article (06/23/06)
    NetID Standards
    Good Passwords

Registration Contact List

SSO Pilot
   Overview
   User Instructions (pdf)
   Tech Support Notes(pdf)
   Presentation(pps)
   Pilot Presentation(ppsx)

Related Links
   Computer Use Policy
   Information Security Policy
   Authentication Policy
   Patient Confidentiality (pdf)
   Info Services Home
   MUSC Home

   Webmaster

   Disclaimer









Reaching for the Single Sign-on Solution

Single Sign-On (SSO) means, in an ideal networking environment, one login name/password pair should unlock every resource to which a user has access. The name/password combination would be recognized throughout the system so that the user could move seamlessly from payroll to patient data to parking to pay stubs to medical history, etc. Also, during a user’s work session, they would only need to type in their user name and password once. In this world, a single ID badge would unlock garage gates, verify your membership in the health club, and serve as your bankcard for lunches in the cafeteria.

It's not an ideal world, but the Office of the CIO's Information Services is trying to make it a better one.

Many systems on campus can already be accessed through a single login/password combination, including LYNX, e-mail, PPP, VPN, MyRecords, Homeroom, WebAdvisor, software download access, FTP, and others. This single login/password combination is the NetID .

By contrast, proprietary systems (e.g., the McKesson suite, Keane PatCom, SmartStream, PracticePartner, and many, many others) often come with their own, independent password file, rules for login methods, and length and composition of passwords. These proprietary password files and rules often don't allow interchange of authentication information with other systems -- in other words, the NetID username and password cannot be used to access these applications directly. In addition, keeping up with multiple passwords is not only difficult for the user, it complicates account creation, auditing, and cleanup.

Information Services investigated enterprise single sign-on solutions and consequently purchased and is in the process of implementing the Passlogix v-GO suite. These products bridge the gap between NetID and proprietary password files. The solution is referred to as “enterprise” single sign-on because it can be applied to most any application that can run under the Windows operating system. Passlogix v-GO Logon Manager stores the proprietary system's logon name/password pair in a protected vault. The user’s NetID password unlocks the vault, allowing Logon Manager to manage the user’s application passwords.

A summary of the Passlogix v-GO enterprise single sign-on solution was presented to the Digestive Disease Service Line (DDSL) team meeting on September 29, 2008. (You may need to right-click the 'summary' link to download the PowerPoint file.) DDSL agreed to pilot SSO on the 6th floor of ART. The pilot is scheduled to begin Wednesday, October 22, 2008. The pilot users are being given these instructions.

Support personnel such as ITC's and redcoats will find the technical assistance guide helpful.