Authentication type

Intrexx authentication

Regardless of membership in local domains, every user should log in to the portal with their username and password found in the "Users" module. Select the user who will assume the role of anonymous user from the Anonymous user drop-down list. The anonymous user is the user who accesses the portal without logging on. This account will be used for all users before logging on. The type of authentication can be changed at a later point in time in this dialog. The change will only take effect once the users are imported.

Authentication via IIS / Windows domain

With this setting, the user account used for logging in to the NT or ADS domain will also be used to log in to the portal. All users must be able to log in to their corresponding domains, or a position of trust must exist in regard to the domain of the Intrexx portal server.

Standard authentication (Plain text)

This option is required when users access the portal with older browsers that do not support encrypted login (Integrated Windows Authentication). The password will be transmitted in plain text in this case. Please note that the password may be intercepted with this unencrypted transmission method.

Also allow via HTTP (not secure)

If this option is activated, passwords will be transmitted unencrypted to the web server.

Integrated Windows Authentication

This setting allows you to log in without entering a password. The users will be authenticated when they log on to Windows.

Domain

Enter the Windows domain you would like to log in to here.

Domain controller

Enter the Windows domain controller for the domain of your choice.

WINS server for name resolution

Enter the server that is responsible for WINS name resolution.

LDAP authentication

Server name (FQDN) / port

Enter the server name (FQDN) and the port for authentication here.

The FQDN (Fully Qualified Domain Name) is composed of the host name and the domain and thus designates the complete and unique address of an Internet presence. It is used for locating specific hosts on the Internet to call them by name resolution.

Encryption

Here you can choose between LDAP and LDAPS.

When encrypting with LDAPS, the certificate must be included in the Portal properties. A notification, which also explains the procedure, is displayed when LDAPS is selected.

Authentication

Select the authentication method of your LDAP server:

none
simple
strong

User

In an LDAP Bind Login three variables can be used, which will be expanded in run-time in the following order:

$[LOGIN_NAME] - Login name of the user饢
$[LOGIN_DOMAIN] - Login domain of the user饢
$[DN] - Distinguished Name of the user (usually entered via replication)

For more information on LDAP authentication, click here.

Exit the dialog

When exiting the dialog, a message is displayed if the selected port does not correspond to the usual standard. If you want to change the port right away, close the notification window by clicking on the close icon in the upper right corner. If you close the notification by clicking on "OK", the dialog will also be closed, unless further messages are displayed. The port can then be changed by opening the dialog again.

Generic authentication

Generic authentication allows the configuration of an authentication module for authentication via an LDAP server. In this case, the user name and the password will be transmitted in plain text. Please make sure that the login only is transferred via secure connections. To set up generic authentication, please contact Consulting at INTREXX GmbH.

Other

Other authentication modules can be developed based on your needs. As examples, the authentication can be instituted here via X509 certificates, authentication to systems from third party providers, and so on. If you have any questions, please contact Consulting at INTREXX GmbH.

Other

Apply authentication type for all authentication scopes

The settings made here are applied to all other authentication scopes.