OpenSSO is the only self-contained Java application that provides federated single sign-on, secure web services and access management capabilities in a single distribution. The solution allows users to easily secure web applications and web services in a standards-based way that is repeatable and auditable. The solution can be deployed in minutes and allows users to onboard and protect new services without having to develop point to point security for each service. In addition, OpenSSO includes a Security Token Service that allows users to abstract their web services security from the application and handle the dissemination of secure tokens in a centralized manner. The Security Token Service also does token translation so that web service providers and web service clients can communicate using different token types. Users no longer need to deploy a separate access management, web services security, federation and security token service. Instead, with OpenSSO, you deploy it once and you have all these capabilities. One distribution. One deployment. One process running. www.opensso.org