The authentication module supports authentication by web single sign-on solutions that work with a proxy-based architecture.
Credentials |
Employee's central user account or personnel number. |
Prerequisites |
|
Set as default |
No |
Single sign-on |
Yes |
Front-end login allowed |
No |
Web Portal login allowed |
Yes |
Remarks |
You must pass the user (in the form: UserName =<user name of authenticated user>) in the HTTP header. The employee is found in the One Identity Manager database whose central user account or personnel number matches the user name passed down. If an employee has more than one identity, the QER | Person | MasterIdentity | UseMasterForAuthentication configuration parameter controls which employee identity is used for authentication.
The user interface and the write permissions are loaded through the system user that is directly assigned to the logged in employee. If a system user is not assigned to the employee, the system user from the SysConfig | Logon | DefaultUser configuration parameter is used. Changes to the data are assigned to the logged in employee. |