Forum Discussion
NimbostratusApp Tunnels and SSO
I am playing around with App Tunnels as a means of publishing an internal resource (Website) that is not playing nice with APM right now. I have the App Tunnel published in the resource assign portion of my access policy. When I launch the App Tunnel the session is established and the internal website launches in a new tab in my browser. This works well but the website then prompts for credentials. Is there anyway to take advantage of the SSO credential mappings I have already stored for the WebTop session and pass those to the application launched by the App Tunnel? I would prefer to avoid having the users prompted for credentials after they have already been provided at the initial login page on the webtop.
2 Replies
Gaelan_Mines_12I should add that the website uses windows authentication, not forms authentication.- Kevin_Stewart
Employee
Do you mean app tunnel, as in a limited SSLVPN connection, or an HTTP portal rewrite config? An app tunnel is generally just a tunnel into an environment and you're going to be challenged to do SSO here. But a portal rewrite can either have an SSO profile assigned to it, or (as I usually prefer) you can point the portal config at another VIP that gas its own access policy and SSO assigned. The beauty of this method is that the credentials collected during the initial authentication would be available to any access policy and/or SSO profile behind that. So if you collected username and password on initial entry, you could create separate SSO profiles for Forms, Basic, and NTLM on the server side.
