Navigation:  Admin Panel > General Settings > Login Settings > General Settings - Login - Authentication Types >

Single Sign On

Previous pageReturn to chapter overviewNext page

This version of SSP provides true Single Sign On capabilities through Kerberos. However, there is an alternative that comes close to Single Sign On. SSP can remember the account that has successfully logged on. The account information is stored in the users profile and can be used to automatically login with the same account when the user returns.

To configure the option for remembering the account, go to general settings and set check the checkbox behind the option Show 'Stay logged in' checkbox on login. This will add a checkbox to the login page, giving users the option to remember the login account.

A second setting needs to be updated in the web.config file of the common application. Find the following string:

<machineKey validationKey="security key removed"
   decryptionKey="hidden" validation="XXX"/>
     <authentication mode="Forms">
       <forms loginUrl="../Common/login.aspx" protection="All" timeout="1440" name=".SMTXAuth" path="/" slidingExpiration="true" defaultUrl="default.aspx" />
     </authentication>

It is important that the security keys don't get distributed or changed. These keys make sure the content of the cookie is secure.

With the timeout value you can configure how long the login will be remembered. In the example the value 1440 is 1 day, as this value is set in minutes. If for example, the login should be done at least every week, set the value to 7*1440 = 10080. If the login can be remembered for an unlimited amount of time, set the value to 0.