Skip to main content
insightsoftware Documentation insightsoftware Documentation
{%article.title%}
Published:
Was this article helpful?
0 out of 0 found this helpful

Enabling Bizview Single Sign-On

To enable single sign-on, a few settings need to be in place:

  1. The IIS website Bizview needs to have Windows Authentication enabled. This is done in the MSI installation (no manual step required).

    Single_Sign_On_IIS_auth

  2. The Anonymous Authentication should be disabled for the Bizview website catalog SSO:

    Single_Sign_On_IIS_anonymous

    The MSI package does this automatically:

    Command utility (32-bit):

    "C:\WINDOWS\Sysstem32\inetsrv\appcmd.exe" set config "Default Web Site/bizview/SSO" -section:anonymousAuthentication /enabled:"False" /commit:apphost

    Command utility (64-bit):

    "C:\WINDOWS\SysWOW64\inetsrv\appcmd.exe" set config "Default Web Site/bizview/SSO" -section:anonymousAuthentication /enabled:"False" /commit:apphost

  3. The Application Setting Active Directory in Bizview needs to be set to the LAN Domain Controller IP Adress. Syntax as: LDAP://<ip-address>

    Single_Sign_On_Active_Directory

  4. All users who are supposed to take advantage of the Single-Sign-On feature need to have their application Domain name set to exactly the same as their Windows account name. Depending on the AD lookup this might be Case Sensitive. Leave Password blank. To ensure that the correct credentials are given, browse to http://<servernam>/bizview/sso/whoami.aspx

    Single_Sign_On_Empty_password

  5. Single Sign-On (SSO) address. To use the SSO feature, the URL for Bizview application is http://<servername>/<appname>/sso
  6. Active Directory.
  7. Note: In addition to these client browser settings, the Bizview server needs to be added as "Trusted for Delegation" in the LAN Active Directory. If you still have problems getting the single sign-on to work properly, please contact your IT-department with these instructions:

    Configure trust for delegation for Web parts To configure the IIS server to be trusted for delegation, follow these steps:

    1. Start Active Directory Users and Computers.
    2. In the left pane, click Computers.
    3. In the right pane, right-click the name of the IIS server, and then click Properties.
    4.        Click the General tab, click to select the Trust computer for delegation check box. Then, click OK.
    5. Quit Active Directory Users and Computers.

Published:

Enabling Bizview Single Sign-On

To enable single sign-on, a few settings need to be in place:

  1. The IIS website Bizview needs to have Windows Authentication enabled. This is done in the MSI installation (no manual step required).

    Single_Sign_On_IIS_auth

  2. The Anonymous Authentication should be disabled for the Bizview website catalog SSO:

    Single_Sign_On_IIS_anonymous

    The MSI package does this automatically:

    Command utility (32-bit):

    "C:\WINDOWS\Sysstem32\inetsrv\appcmd.exe" set config "Default Web Site/bizview/SSO" -section:anonymousAuthentication /enabled:"False" /commit:apphost

    Command utility (64-bit):

    "C:\WINDOWS\SysWOW64\inetsrv\appcmd.exe" set config "Default Web Site/bizview/SSO" -section:anonymousAuthentication /enabled:"False" /commit:apphost

  3. The Application Setting Active Directory in Bizview needs to be set to the LAN Domain Controller IP Adress. Syntax as: LDAP://<ip-address>

    Single_Sign_On_Active_Directory

  4. All users who are supposed to take advantage of the Single-Sign-On feature need to have their application Domain name set to exactly the same as their Windows account name. Depending on the AD lookup this might be Case Sensitive. Leave Password blank. To ensure that the correct credentials are given, browse to http://<servernam>/bizview/sso/whoami.aspx

    Single_Sign_On_Empty_password

  5. Single Sign-On (SSO) address. To use the SSO feature, the URL for Bizview application is http://<servername>/<appname>/sso
  6. Active Directory.
  7. Note: In addition to these client browser settings, the Bizview server needs to be added as "Trusted for Delegation" in the LAN Active Directory. If you still have problems getting the single sign-on to work properly, please contact your IT-department with these instructions:

    Configure trust for delegation for Web parts To configure the IIS server to be trusted for delegation, follow these steps:

    1. Start Active Directory Users and Computers.
    2. In the left pane, click Computers.
    3. In the right pane, right-click the name of the IIS server, and then click Properties.
    4.        Click the General tab, click to select the Trust computer for delegation check box. Then, click OK.
    5. Quit Active Directory Users and Computers.

For an optimal Community experience, Please view on Desktop
Powered by Zendesk