Question : single signon

I've been asked by a client to implement single signon for our web site from their network. The preferred methods/configurations are these:
1) SSO should occur over https
2) SSO information should include a timestamp
3) Trust information of any sort should be encrypted
4) Timestamps are synchronized with tick.usno.navy.mil and/or tock.usno.navy.mil to within +/- 30 seconds *
5) Where reasonable it is preferred that users only have access to the trusted system via SSO and not by direct login
6) The following hash and encryption methods are supported:
A. 3DES
B. AES
C. SHA-1/SHA-256 (Hash)
D. MD5 (Hash, deprecated)
7) we need to support /access LDAP version 3 or higher

My site is built in .net using Visual Studio, SQL Server 2008 database - all hosted by DiscountASP.

I have NO experience in any of this and am very nervous. My questions are;
1.How do I access their LDAP? I think via XML somehow. Any good references for this?
2. If I convert sites to https, what code updates will I have to do? Does it mean recoding of all pages or does it mainly hit the config.sys file?
3. anyone have good links to start researching?

Thanks SO much for any help...

Answer : single signon

how do you plan to use the token? will it be used to authenticate your server to the web service?

synching your server's time with reliable time providers:
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2000_Server/Q_22951251.html

BASE64 transformation
http://www.devcurry.com/2009/01/convert-string-to-base64-and-base64-to.html

AES is a symmetric encryption, so I assume that you will swap keys beforehand in a secure manner.
http://www.experts-exchange.com/Programming/Languages/.NET/Visual_Basic.NET/Q_24845774.html

there are still a few major unknowns.
How does the customer plan for you to have the daily file in a secure manner?
The customer must deploy a web service to verify users. This web service will hide the LDAP details from you, so you will not have to deal directly with LDAP.
Of course, you need the web service details..

ShalomC

Random Solutions

Mysql conncetion problem

Running app with X through ssh

Why does this new window javascript code not work?

sorting on a calculated field ssrs

Powershell get-credential

insert into tablename select *,colname(s) from similar_tablename; when table columns diff by one or more column names

FTP: 550 Access Denied

How to assign limited access server login to SBS 2008

Is there a way to Setup my AS400 Session so that I automatically logs me on without having to type username/password?

How to hide files based on extension type