When integrating
CSM
with multiple domains, you can configure single sign-on user authentication by
associating a particular Windows Domain with a Trusted Agents Group or Service.
Before you can use Trusted Agents to authenticate Users through a
Windows Domain, you must first configure Trusted Agents. For more information,
see
Configuring Trusted Agents.
Trusted Agents for Windows Domains do not provide pass-through
authentication for Windows users. Users must still supply their user name and
password in order for their Windows credentials to be validated using the
Trusted Agents.
LDAP directory configuration is not required when using
Windows.
To enable Windows Domains for Trusted
Agents:
- Verify that
CSM
is configured for Windows domains:
- In
CSM Administrator,
select the
Security category and then select the
Edit security settings task. Select each
client page (Desktop Client,
Browser Client,
etc.) and verify that Windows is selected as a login mode.
- Create or open a Blueprint, and then select
. Specify the domain name of the network.
- On the
Windows Domain Settings window, select the
Trusted Agents page.
- Select the
Use Trusted Agents check box.
If you want to disable Trusted Agents for this Windows domain,
clear the
Use Trusted Agents check box.
- Select one of these group options:
- Any Trusted Agent Group: Select to
allow any group to handle requests for this domain.
- Trusted Agent Group: Select a specific
group to handle requests for this domain.
- Select
OK.