Using a browser and Kerberos to log in with a single sign on

A single sign-on saves time because the system requires a user to enter credentials only once.

Do one of the following:
- If the station shares the current realm, log in as the current user by clicking the realm login button.
  For this choice to work, the station must reside on the same realm that you are on. For example, if you are logged in to the FACTORY realm, the system cannot use your credentials to access a station set up for the HQ realm.
- For SSO access, go to the /login-kerb page (instead of this default /login page) and the system directly logs you in to the station without having to click a Login button.
If you can successfully log in using SSO and want to bypass the login window in the future, click to select the Remember my choice check box at the bottom of the window.
This is effectively the same as going to the station’s /login-kerb page.
If you are not using the SSO feature, click the OR (Hide) link.
This reduces the size of the login Window to include just credentials.
To restore the login window, click the OR (Show) link.
Browser cache maintains the configuration of the last-used login window.

NOTE: All N4 JACE controllers support the Kerberos SSO (Single Sign On) feature from a browser, while AX controllers do not, with the exception of JACE-8000s and JACE-9000s. The reason for this is that Kerberos SSO via the browser is not supported in Java 5 (used in AX PPC JACEs), but all N4 JACEs use Java 8 (which does support it) including JACE-8000s running AX-3.8U1.

Using a browser and Kerberos to log in with a single sign on

Related Links