What methods are available to determine what version of Quest Single Sign On for Java is being used in an application.
1 - When the VSJ AbstractAuthenticator starts up it logs this information. IIRC it only logs this at DEBUG level (for the "com.wedgetail" log entry),
DEBUG-level VSJ logging is set in the log4j configuration for VSJ
2 - Unpack the VSJ JAR file and look at the META-INF/MANIFEST.MF file.
Neither of those will give you 100% information (for instance, they won't tell you about incremental patches such as 3547 or 3601), but either of them will give you much more precise information than looking at the name of the JAR file.