Zum Hauptinhalt springen
Deutsch
|
English

AUTOLOGIN - Detailed description

Administration

IC2866
Administrator
Administration
FM-Portal

Overview

Parameter: AUTOLOGIN
Category: Login
Default value: 0 (disabled)
Product: eTASK.Login

What does this parameter do?

AUTOLOGIN enables automatic user login via Windows Single Sign-On (SSO). If this parameter is set to 1, users are automatically logged in to the portal using their Windows credentials without having to manually enter their login information.

What is this parameter used for?

The parameter is used when:

  • Users are to log in without manually entering a username and password

  • Windows authentication via Active Directory is used for login

  • Seamless integration between the Windows environment and the portal is desired

  • Users are already logged in to their Windows computer and this authentication is to be used for the portal

Technical Details

Format: Numeric value (0 or 1)
Default value: 0

Valid values:

  • 0 = Automatic login disabled (default)

  • 1 = Automatic login enabled

Important notes:

  • Automatic login works via the NTLM authentication protocol

  • This parameter works closely with Active Directory settings

  • Requires appropriate configuration of the server environment

When should you change this value?

Set the value to 1 (enable) if:

  • All portal users are managed via Active Directory

  • Windows authentication is already established in the corporate infrastructure

  • You want to simplify the login process for your users

  • You have a pure intranet environment where all users work with Windows accounts

Leave the value set to 0 (disabled) if:

  • You need to support different login methods

  • External users without Active Directory access use the portal

  • You want to retain more control over the login process

Important Notes

  1. Active Directory Prerequisite Automatic
    login only works if Active Directory is configured correctly. The parameters ACTIVEDIRECTORYDOMAIN and LOGINUSEACTIVEDIRECTORY must also be set accordingly.

  2. IIS Configuration
    The web server (IIS) must be configured for Windows authentication. Anonymous authentication should be disabled for the login page.

  3. Browser Compatibility Automatic
    login works natively with Microsoft Edge. For Firefox and Chrome, additional browser configurations are required to enable NTLM authentication.

  4. Intranet Zone
    For smooth operation, the portal URL should be configured in the clients’ Intranet zone.

  5. Security Considerations
    When automatic login is enabled, ensure that users lock their workstations when away, as otherwise others could automatically gain access to the portal.

Security

Does changing this parameter affect security?

Yes, enabling automatic login has a direct impact on the security of the portal.

Positive aspects: * Uses proven Windows authentication and Active Directory * No need to store passwords in the browser * Centralized management of user rights via Active Directory

Important: * Users should be trained to lock their computers when away * Windows accounts must be configured in accordance with your company’s security policies * When using NTLM, communication encryption (HTTPS) is particularly important

Recommendation: Automatic login is secure when used in a controlled corporate environment with appropriate security policies. Train your users on the secure use of automatic login and ensure that all workstations are locked when unattended.

Practical example

Initial situation: A company with 200 employees wants to simplify portal login. All employees use Windows accounts in the Active Directory domain "company.local".

Configuration:
1. ACTIVEDIRECTORYDOMAIN = "company.local"
2. LOGINUSEACTIVEDIRECTORY = 1
3. AUTOLOGIN = 1
4. IIS: Windows authentication enabled

After the change:

  • Employees open the portal URL in their browser

  • The system automatically recognizes their Windows login

  • They are redirected directly to the portal without having to enter a username and password

  • Login takes less than a second

Result: Employees save time every day during login and can start working immediately. The IT department sees fewer support requests regarding forgotten passwords.

Recommended setting

For standard installations:0(disabled)

Reason:

  • Provides maximum flexibility for different login scenarios

  • Allows both internal and external users

  • Prevents unintended access at unlocked workstations

Pure Active Directory environments:

  • Set the value to 1if all portal users are managed via Active Directory

  • Use this setting only in closed intranet environments

noted36a0e0d-8003-4c06-91e1-03b2a1ef0924

Tip: First test automatic login in a test environment and train your users to lock their workstations before deploying the feature in production.

War dieser Artikel hilfreich?