The OpenEdge Authentication Gateway can be configured as a Security Token Service (STS) for OpenEdge applications hosted on a PAS for OpenEdge instance.

The Authentication Gateway is a secured HTTPS server that provides STS functionality, which includes user authentication and Client-Principal generation. The use of a common Authentication Gateway for instances, databases, and applications enhances security and reduces complexity (because, for example, each PAS for OpenEdge instance does not need to maintain its own copy of OpenEdge Domains and Domain Access-codes).

Connections between a PAS for OpenEdge instance and an Authentication Gateway server are facilitated through the STS AuthenticationProvider, a plug-in to the Progress Application Server's Spring Security framework.

For more information, see Configure the OpenEdge Authentication Gateway.