HP ProLiant xw2x220c Remote Graphics Software 5.3.0 User Guide - Page 26
Single Sign-on and Easy Login, Step 1: Authenticating, the RGS connection, Step 2: Authorization
View all HP ProLiant xw2x220c manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 26 highlights
If another user is already logged into the Remote Computer, the second authentication step is replaced by an authorization step, in which the currently logged-in user receives an authorization prompt to allow or disallow the new user to join (connect to) the existing desktop session (see Figure 2-11). The new user is allowed to connect to the existing RGS connection only if the currently logged-in user authorizes the connection. Figure 2-11 RGS connection process if another user is already logged into the Remote Computer Step 1: Authenticating the RGS connection Step 2: Authorization by the currently-logged in user RGS Connection Displayed on the Local Computer Displayed for the currently-logged in user There are a number of variations of the Standard Login process, as detailed in Section 5-3-1, "Standard Login." 2-10 Single Sign-on and Easy Login RGS supports two additional login methods on certain Windows-based Remote Computers. These login methods are currently only supported on Windows XP sender platforms. These two methods allow users to enter their credentials only once in connecting to a Remote Computer-these methods are described below, along with which authentication process is used: • Single Sign-on-The RGS connection authentication process is used (step 1 in Figure 2-10 and Figure 2-11). If authentication is successful, the user will immediately see the Windows desktop session without needing to explicitly log into Windows or unlock the desktop. Single Sign-on is described further in Section 5-3-3, "Single Sign-on." • Easy Login- The user is pre-connected to the system and standard Windows login screens are used to login to the desktop or unlock the screen. If Windows authentication is successful, the user will immediately see the desktop session without needing to be first authenticated by the RGS Receiver/Sender. Easy Login is described further in Section 5-3-2, "Easy Login." If neither Single Sign-on nor Easy Login is selected, the default Standard Login will be used. In terms of selecting between Single Sign-on and Easy Login, two factors to consider are: • If Single Sign-on is used with HP Session Allocation Manager (SAM), the user will only need to enter their credentials once to connect to multiple Remote Computers. The credentials are entered when authenticating with SAM-thereafter, each RGS connection is automatically authenticated, and a Remote Display Window from each Remote Computer is automatically displayed on the Local Computer. • Easy Login supports GINA (Graphical Identification and Authentication) chaining, allowing custom 3rd party login mechanisms to be integrated into RGS. Single Sign-on does not support chaining of 3rd party GINA modules. For example, a 3rd party fingerprint reader will typically install a custom GINA module. The GINA module will allow the user to be authenticated through their standard username/password mechanism (because the GINA modules are chaining) or with their fingerprint. The fingerprint reader would be physically attached to the Local Computer but would be logically connected to the Remote Computer using remote USB. If Easy Login is used, only a single login step is required-the fingerprint reader will provide the credentials for logging into the Remote Computer. RGS overview 26