Forum Discussion
NimbostratusSSO Remote desktop
Hello Probably a quite easy thing to accomplish. I have a windows 2008 server, i have created a remote desktop and want to send the user credentials (aka sso), i have clicked the "Auto Logon". But i try to access the rdp icon on the webtop it dont seem to send any credentials.
23 Replies
supportrsd_1762Good point, i will check this when im at the client the next time.
- supportrsd_1762Alright it seems to be the same issue with both web and ntlm aswell. It wont even send any credentials. Where should me "sso credential mapping" be placed, after the LDAP auth?
kunjanI think we don't need SSO credential mapping here.
- supportrsd_1762Ok, so how should i troubleshoot this, for example the webapplication. Begin to check if the session variables are loaded with sessiondump?
kunjan_118660Cumulonimbus
I think we don't need SSO credential mapping here.
- supportrsd_1762Ok, so how should i troubleshoot this, for example the webapplication. Begin to check if the session variables are loaded with sessiondump?
- kunjan_118660
Is it for web application? Then yes need to do sso credential mapping. For websso you can enable debug for SSO using log.sso.level to debug.
- supportrsd_1762Alright, where should de sso credentials mapping be placed in the flow? After the authentication?
- kunjan
Is it for web application? Then yes need to do sso credential mapping. For websso you can enable debug for SSO using log.sso.level to debug.
- supportrsd_1762Alright, where should de sso credentials mapping be placed in the flow? After the authentication?
- kunjan
Yes, typically before 'Allow'.
- supportrsd_1762
Starting to belive its something wrong with getting the password credentials, is there anyway to access the session.logon.last.password to see if its storing it correct?
- kunjan
You can assign this to a variable with unsecure option and do sessiondump sid and check the variable value.
- supportrsd_1762
And how do i do that :P
- kunjan_118660
In the VPE, insert the "Variable Assign" and use session variable "session.logon.last.password" and assign to a custom variable like session.logon.custom.password with "unsecure" option.
- supportrsd_1762I found something really intresting, i had a "variable assign" after the radius auth and then printed it with a message in the VPE, then i saw the radius token (from my 2 factor authentication device), but when i placed the variable assign between the AD auth and the radius auth, i got the AD password printed.
