The Workplace Application Integration toolkit allows third-party client applications to integrate with Workplace. Windows-based applications, such as Microsoft Word and Microsoft Outlook, can leverage Application Integration COM components for this purpose. These COM components interact with the Application Integration servlets, sending XML requests over HTTP, and receiving XML responses.
Application Integration clients are not able to participate in single sign-on solutions (SSO) unless configured for Kerberso/SPNEGO; they are restricted to user name- and password-based authentication. Application Integration clients can co-exist with thin client applications that participate in an SSO solution. However, a single Application Engine plus Workplace deployment cannot simultaneously support clients using container-managed authentication for SSO (for example, browser-based Workplace clients coming in through a reverse proxy server), and clients that are using application-managed authentication (such as Microsoft Office clients using the Application Integration Toolkit). In order to support both SSO which is setup using the container-managed option and Application Integration in the same environment, a second copy of Application Engine plus Workplace must be setup and deployed using the Application-Managed Authentication option to service the Application Integration Clients via user name- and password-based authentication.