Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | Next revision Both sides next revision | ||
tutorial:adm:sso_ad_domain [2020/01/13 12:01] doischert |
tutorial:adm:sso_ad_domain [2020/02/11 07:23] doischert |
||
---|---|---|---|
Line 2: | Line 2: | ||
CzechIdM supports Single-Sign-On of the AD domain users. The mechanism uses web server, which handles the Kerberos authentication and provides the login of the authenticated user in the HTTP header. Then CzechIdM processes this header and authenticates the user automatically. | CzechIdM supports Single-Sign-On of the AD domain users. The mechanism uses web server, which handles the Kerberos authentication and provides the login of the authenticated user in the HTTP header. Then CzechIdM processes this header and authenticates the user automatically. | ||
+ | |||
+ | <note important> | ||
If the user is the Application Admin (e.g. has assigned the role superAdminRole), | If the user is the Application Admin (e.g. has assigned the role superAdminRole), |