Additional configuration is required to maintain the authentication credentials of web applications in OnBase when the following conditions are met:
-
OnBase is configured to use Active Directory - Enhanced as the authentication method
-
OnBase is configured to use non-interactive/autologons
Non-interactive authentication is configured in OnBase by de-selecting the Interactive User Authentication options in the Directory Service Authentication dialog box. When non-interactive authentication is used, the domain account currently logged in to the workstation is used to authenticate the user in OnBase.
If Active Directory - Enhanced is not the authentication method configured, or Interactive User Authentication is enabled, additional configuration is not required.
This section describes the additional configuration required in order to use non-interactive/autologon Active Directory authentication with OnBase web applications, including the OnBase Application Server.
To complete the additional configuration you must configure the Microsoft Windows environment, configure the OnBase Application Server, and configure the web applications of your OnBase modules.
These processes are described in the following sections:
-
To configure the Microsoft Windows environment, see Registering a Service Principal Name (SPN) and Configuring Delegation in Microsoft Windows.
-
To configure the OnBase Application Server, see Configuring the Application Server.
-
To configure OnBase web applications, see, Configuring Web Applications.
Additional information may be available in the Directory Service Authentication whitepaper, available from your first line of support.