Single Sign On (SSO)Basic Concept When the SSO mode is used, the username is provided by the user's environment (i.e. the SSO authentication module) which is responsible for the SSO authentication (depends on the environment configuration). The user does not have to enter it into the login dialog. When the user tries to open the Valuemation Web client, the (HTTP) request goes through the authentication module which is responsible for the authentication of the currently logged user into the system and enriches the request with the username before it reaches the Valuemation servlet. The provided username is checked in the Valuemation database whether such a user exists (see the 'SSO users mapping' mainparameter). When there is such a user, he is logged in automatically. When the SSO authentication fails (e.g. the username is not a valid user in Valuemation), the login dialog is shown prompting you to enter the credentials manually.
Valuemation server can obtain the authenticated SSO username from the request sent to the server in two ways:
These two methods are used when the value of the mainparameter 'SSOType' is set to 'TrustedRemoteUserName'. Note: This is a default value setting since Valuemation v.4.6.
The Process of Getting the Username from the HTTP Request
| |||||||||