Authentication
Users module
Main menu: User / Configuration / Authentication
Authentication via Tomcat / Windows domain
With this setting, the user account that is used for logging in to the NT or ADS
domain will also be used to log in to the portal. All users must be able to log
in to their corresponding domains, or a position of trust must exist in regard to
the domain of the Intrexx portal server.
Standard authentication (Plain text)
The
Standard authentication (Plain text) option is required when users with browsers such as Netscape Navigator
or Mozilla Firefox access the portal. These browsers support no encrypted login (integrated Windows authentication).
The password will be transmitted in plain text in this case. Please note that the password may be intercepted with this unencrypted
transmission method.
Also allow via HTTP (not secure)
If
Also allow via HTTP (not secure) is set, passwords will be transmitted unencrypted to the webserver.
Integrated Windows authentication
The option for
Integrated Windows authentication allows users with Microsoft Internet Explorer to login without entering a
password. The users will be authenticated when they log on to Windows.
Domain, Domain controller, WINS server for name resolution
Enter in
Domain the Windows domain that you wish to log on to. In
Domain controller
enter the Windows domain controller for the domain. In
WINS Server for name resolution enter the server that is responsible for WINS name resolution.
LDAP authentication
With LDAP authentication a server and port can be entered. Via the LDAP Server the authentication in the Intrexx Portal will be processed.
In the
Authentication drop-down list, select the type of authentication used by your LDAP server. The
simple setting is usually the correct selection.
In an LDAP Bind Login three variables can be used, which will be expanded in runtime in the following order:
$[LOGIN_NAME] - Login name of the user
$[LOGIN_DOMAIN] - Login domain of the user
$[DN] - Distinguished Name of the user (usually entered via replication)
Intrexx authentication
Regardless of membership in local domains, each user will log on with
the user name and the password from the User Manager to the portal.
Select the user who will assume the role of anonymous user from the
Anonymous
User drop-down list. The anonymous user is the user who
accesses the portal without logging on. This account will be used for
all users before logging on.
The type of authentication can be changed at a later point in time from
Intrexx Authentication to
Authentication
via Web Server. The change will take effect only after the
users are imported.
Generic authentication
Generic authentication allows the configuration of an authentication
module for authentication via an LDAP server. In this case, the user
name and the password will be transmitted in plain text. Please make
sure that the login only is transferred via secure connections. To set
up the generic authentication, please contact United Planet Consulting.
Other authentication
Other authentication modules can be developed based on your needs. As
examples, the authentication can be instituted here via X509
certificates, authentication to systems from third party providers, and
so on. If you have questions, please contact United Planet Consulting.
Mobile devices
Allow plain text passwords for devices without JavaScript support
support enables the entry of passwords in plain text on mobile devices,
when JavaScript support is not allowed.
|
For security reasons, this option should only be used when the communication
is secured via TLS (https).
|
Anonymous users
Select the user from the user management of your portal who will be used as anonymous user here by clicking on
Select anonymous user.