Setting up users to use integrated or secure token logon

There are three different logon policies that you can configure using Configuration Center:

  • Explicit only –this is the default, and is available for console, Web Access, and Workspaces. With this option, users enter their Service Desk or Asset Manager user name and password to access the application each time they start it.
  • Integrated only – available for Framework (and provides integrated logon for console) and for Web Access. With this option, the user's network login identifies their user account, and logs them on automatically.
  • Token only – available for Web Access and Workspaces, and is the recommended option for these. This option provides single sign-on (SSO) for Web Access and Workspaces using Ivanti Secure Token Server (STS). STS is installed as a part of the Server installation option.
    Single sign-on enables users to log in once to access a number of different applications using a single user name and password. By using STS, users can log in to Workspaces or Web Access using their Active Directory user name and password – which are typically the same credentials that they use to log on to the network.

For more information about configuring your web applications using Configuration Center, see the Setup Guide.

For Integrated only and Token only, you need to associate Service Desk or Asset Manager user accounts with a network login using the Administration component in the Console. In some circumstances, you may have more than one network login per user. If this is the case, then you can specify these additional logins. Each network login must be different for each user. That is, you cannot use the same login details for more than one user.

To specify network logins for a user:
  1. Start the Administration component.
  2. Expand the User Management tree, and select the required user.
  3. On the Actions list, click Add Network Login.
    The Network Login dialog appears.
  4. Specify the required login details, then click OK.
    Each network login is listed in the Network Login folder under the relevant user.

To remove a network login, select it on the tree, then on the Actions list, click Remove Network Login from User.