Pat Patterson wrote an OpenSSO module for Drupal

Dear friend Pat Patterson (twitter) pinged me the other day to let me know he actually wrote a module for Drupal. If you do not know Pat, he is the leading authority when it comes to all things "Identity Management"; process, vision and actual code in Sun's OpenSSO project (Sun's open version of the previous proprietary Sun Access Manager. And now Pat released OpenSSO module for Drupal.

Identity management is complex, it is more then 1 slide per second or a technical solution. The biggest problem in ID management is trust, procedures as well as installed base. Migrating a corporation with thousands of employees that is fully AD based (like most enterprises are) towards something like OpenID is impossible. And OpenID by itself only solves parts of the AAA problem. Where OpenSSo might for a corporation migrating towards a more open way of dealing with identities ("persons") a far more better way.

Logging in to a website with Single Sign On (or more often: Single Log On) is only a small part of the problem of an enterprise. Sure, an increasing part since more and more applications are webbased; AJAX replaced RDP and ICA for many tasks. But still, only a small part. So if one wants to push Drupal into the heart of an enterprise as an Intra- or extranet, one needs to understand that OpenID / OAUTH might be good for an all webbased company, but not for any company that is older then 10 years.

OpenSSO however is. And Pat's work to integrate this into Drupal sure helps. Thanks Pat!