About Authentication
•About Internal and External Authentication
•About External Authentication Configuration
•Setting Up External Authentication with LDAP
•Working with Single Sign-On Authentication
About Internal and External Authentication
Service Manager enforces authentication through internal or external means when you log in. These are specified by checking one or both of the following when creating an employee account:
•Enable Internal Auth: Employs a user name and password stored in the Service Manager database for authentication purposes. You need to supply the password used for this employee account.
•Enable External Auth: Permits the use of Microsoft Active Directory (secured using HTTPS) authentication. You need to supply LDAP server login credentials. It can differ from the ID used for internal authentication, and can contain a domain prefix.
If you enforce additional policies, such as password expiration and password complexity, to strengthen security, you should enable internal authentication.
If you enable both authentication protocols, Service Manager attempts internal authentication first. If the internal authentication fails, the application tries external authentication. For example, if your internal authentication ID of bernard.jeffries fails, Service Manager then tries the external ID domain_name/bjeffries.