JDE SSO

A new & easy kind of Single Sign-On for JDE

>Oracle® Validated Integration for JD Edwards® EnterpriseOne® 9.1 and 9.2

Our SSO solution is not even comparable to any competing products: installed in a day, with no need for consulting or any JDE configuration changes, smooth as silk and as flexible as one can wish, including support for JDE releases from XE and up, support for multiple JDE accounts per user, multiple JDE systems, all releases of JDE from XE and up as well as support for multiple domains & forests in a variety of ways! This ultimate prompt-less single sign-on for JDE has been rapidly adopted by many JDE customers as their SSO solution of choice. Three of the largest JDE implementations in the World (with 5,000 to 10,000 JDE users) are already using this solution in production. Dozens more run it in production for 100 to 2,000 JDE users.

Instant savings on consulting expenses and improved user's productivity. Highly secure and more robust than any other approach. From version 9.0, the AD extensions are now optional and the internally used encryption has been updated to the highest industry standards.

Current version: 9.0
Oracle® Validated Integration for JD Edwards® EnterpriseOne® 9.1 and 9.2

  • Product Brief
  • More Details
  • System Requirements
  • Licensing
This SSO solution is one of our greatest achievements.

Our radically new approach to SSO pays off in many ways:

  1. It is much easier to setup than any other, typically in just a day;
  2. It's very non-intrusive - it requires no changes to JDE configuration;
  3. It can be implemented incrementally, adding a few users at a time, it is a lot easier than the standard JDE "all or none" LDAP integration;
  4. Consequently, there's no need for any consulting to either set it up or to use it and our installation support is free;
  5. The JDE sign-on becomes smooth and absolutely prompt-less with our approach (although it can be configured to prompt the users for their Windows sign-on, if desired);
  6. It is pleasantly flexible, allowing access to multiple Environments and/or Roles with additional prompts, plus the full SSO support for the approval links in standard JDE messages;
  7. Full support for Parameterized URL's also means that the users can create shortcuts pointing to specific applications - this is even more convenient to use than E1 Pages, let alone Menus/Tasks;
  8. Needless to say, that there is no 10-char password limit, nor a single-Domain limit for the users: it will support multiple AD domains and multiple AD forests and will even work for external non-Domain users with an extra log-in prompt;
  9. Importantly, this solution now also supports multiple JDE accounts per user;
  10. And no less importantly, we now support all JDE releases from XE (!!!) upwards;
  11. Of course, this SSO solution will also save a lot of time to both the users and the IT support, since there's no longer any need to manually maintain JDE passwords.
While this solution is in most cases completely prompt-less, in cases when the user needs to be prompted, the screens presented to the user can be easily translated into any number of languages supported by the user browser and all users will receive such prompts in their native tongue, i.e.:

Translated Prompt

The following high-level diagram illustrates some of the options and benefits of this solution (please note that all of the additional available options are optional and are only needed for more complex cases, the most typical one Domain / one JDE system installation will of course be the easiest one to handle and may not need any of the more advanced options included with our SSO):

Please e-mail us if you would like to trial this solution in your environment and we will supply you with the software, assistance and a limited trial license at no cost.

In all JDE implementations, the user, password and generally authentication management are all big issues, consuming sizeable amounts of effort and ultimately costing companies a pretty penny at the end of the day. A number of real and perceived issues, surrounding all standard approaches offered by Oracle(R), are frequently preventing JDE customers from implementing any of these "standard" solutions. There is a clear need for some alternative to fill in this gap. Something that is secure, easy to understand and implement, more flexible, convenient to use and also well documented.

With this SSO solution, the authentication is effectively delegated to Active Directory and all JDE aspects of it are effectively removed from the picture, now silently managed by our SSO software in the background. And all of this happens without the complexity of setting it all up within JDE, while delivering some serious additional benefits which are not available with the standard JDE LDAP integration. Yet, despite the fact that it's not at all identical to JDE LDAP integration, it is still an LDAP integration, just a different kind. A much friendlier kind. And with much more power and flexibility.

This is a 6-in-1 solution. It concurrently resolves SIX SEPARATE issues in JDE:

  1. It implements JDE Single Signon WITHOUT configuring JDE for either LDAP or Oracle SSO, in fact without any special configuration in JDE at all - this will save you a lot of time and pain!
  2. When signing in into the JDE WEB or Fat client, this solution ELIMINATES THE JDE PASSWORD PROMPT entirely, relying on Windows authentication to seamlessly authenticate the users - this will save your users time and make their JDE experience better! (In some cross-forest scenarios and for external users, there will still be a log-in promptfor the AD credentials.)
  3. The standard JDE approach requires Windows User Names to be identical to those of JDE Users + imposes the 10-char restriction on the password length. While this SSO solution ELIMINATES THESE REQUIREMENTS, your Windows User Names and Passwords can be as long, or indeed as different from JDE's as desired. This will give you the flexibility most sites need! The mapping of Windows Users to JDE Users is handled by this software and the process is also simple and easy.
  4. All standard approaches limit the users to a single JDE account per Windows account, while our solution allows any Windows account to be associated with multiple JDE accounts.
  5. Moreover, this solution practically ELIMINATES PASSWORD MANAGEMENT in JDE, by entirely concealing the JDE passwords and effectively replacing the manual JDE signon with an automated process - this will reduce your support costs and again, save time to your users! And because JDE passwords are now out of the picture, there are no restrictions on the users' password length.
  6. And to top it all, this solution will at the same time LOAD-BALANCE the JDE WEB Servers - it's just a nice extra feature we could include in this solution at no extra cost! In fact, the unlicensed users of this software can also enjoy this feature, so this solution can be used as a single entry point into JDE for both licensed and unlicensed users.
This solution is typically non-visual: when everything is configured and works as expected, the users won't even see it. And if there are any errors that the users should be notified about, this solution shows itself and presents the user with a helpful screen, detailing the error and the possible solution.

The installation is simple and easy, administration is streamlined and intuitive. If you ever used our software, you would know that our solutions are extremely easy to work with, nothing like you've ever seen before. If you are trying to compare the necessary implementation efforts with the JDE LDAP authentication implementation requirements, it will likely take 10-50 times less effort with this solution. This solution can deliver massive savings, it would typically pay itself off within a few months.

Moreover, these two separate products - this SSO and the USM (ESI JDE User Self Management) can be integrated together: the passwords reset with this USM software can be valid for the SSO software as well, with just a single integration setting in the INI file. And the bundle of these two solutions also comes with a built-in discount. Please, e-mail us for more details about this integration.

Nothing can be easier!

This solution can be implemented in hours. Installation support is free. All JDE releases from XE and up are supported for WEB, Portal and Fat Clients (including Citrix). As far as the JDE backend and WEB platforms are concerned, this solution is independent of either one (provided that it is OW/E1 and not World and bearing in mind that it does need an IIS server somewhere in your network to run on). Nothing needs to be installed on the clients in order to use this solution (except in some special cases for advanced functionality), so all and any client platform and browser are supported, including Linux, WTS, etc. Please note, that IIS running the core SSO module and the SSO Manager - the two components of this solution, can both be installed in a single VM and this VM can even be running some old OS like Windows 2003 to save on the license costs.

Please, e-mail us for more details or to request a Trial (full functionality, time and user count limited). The Installation Guide included with the trial provides all the technical details.

Here's a simplified process diagram, illustrating the main steps and components of the process:

Single-Domain installations are, of course, very straight-forward in terms of their design: everything will be installed in the same single Domain. With multi-Domain or multi-Forest installations, we will discuss the available options to help you decide which AD configuration will suit you best: the core SSO server(s) can be installed in a single central location, or in multiple locations, depending on how you would like the users and the licenses managed.

This software is absolutely independent of JDE or JDE platform, but it typically requires a dedicated or shared Virtual or Physical Server running any release of Windows from 2003 and up, with any release of MS IIS, on either Intel or AMD CPU in either 32- or 64-bits, as a Server for this solution.

JDE Releases: XE (B7333), ERP8 (B7334), B9 (E1 8.9), E810, E811 (including E811 SP1), E812, E900, E910 (OVI), E920 (OVI).
JDE Backend Hardware Platforms: hardware-independent - all platforms supported by JDE are supported.
JDE Backend Database Platforms: DB-independent - all platforms supported by JDE are supported.
Client Machine Software Requirements: none, but different browsers may place different restrictions on the available functionality and the sign-on prompt.
Client Machine Hardware Requirements: has no requirements above those of the browser.

The licensing works as "Per Named Windows User with JDE Access", but it does not need to include all Windows Users. In fact, it does not even need to include all Windows Users with JDE access: some users can continue to use the traditional JDE sign-on mechanism. There are no restrictions on how many SSO Servers you can install - the licensing only accounts for the Users. The licenses are sold in 100 user packs.

The optional Yearly Update/Upgrade Subscription is available at the time of purchase (not available separately) for an additional yearly fee. It is payable in advance per license, per year. It includes premium support and all software updates released during the paid period. Its cost is calculated as 20% of the product's list price at the time of invoicing, as may change from time to time. Unless the software is purchased for a single use application, we generally recommend to opt in for this Subscription: any future JDE Tools Releases and Releases/Updates may require an updated version of this solution and it's generally more cost-efficient compared to one-off Upgrades.
 
Related products:

For Security & Systems Management:
JDE User Password Self-Management - JDE USM
JDE SSO and USM Bundle - JDE SSO and USM Bundle