I have an internal site that would like to utilize NAM for
authentication, however they don't want to utilize the reverse proxy. I
was thinking of just setting up a RP for them to redirect users to when
authentication is needed. The question is how can they check the user
has a valid session? I'm assuming there's some information in the
cookie or headers they could use, but how would they be able to confirm
it's validity and that it came from NAM? I don't work with NAM
extensively, so this may be something really simple and I'm just
overlooking or over thinking it.

Any insight would be greatly appreciated!!


jkinney's Profile: https://forums.netiq.com/member.php?userid=296
View this thread: https://forums.netiq.com/showthread.php?t=47751