- Skill Level:Advanced
- Estimated Time Required:30-45 minutes
- Prerequisites:
- All required authentication credentials are available.
- Access to system, network, andFME Flowadministrators.
Note ">
NoteThe task described here should be undertaken by advanced users only. Before proceeding, consider your options for alternative solutions until you are certain you wish to proceed. For additional resources, consult theFME CommunityorFME Support.
With Integrated Windows Authentication (IWA), also known as "single sign-on," you can enable the users you import from yourWindows Active Directoryconnections to integrate their Windows login credentials withFME Flow. When single sign-on is enabled:
- There is no need to log in to theFME FlowWeb User Interface. Instead, selectUse Windows Credentialson theSign Inpage.
- Similarly, there is no need to log in toFME Flowwhen usingFME Workbenchto publish a工作空间or download an item. Instead, checkUse Alternate Login Methodand specifyWindows Credentialsin the Publish or Download wizard.
Note ">
NoteWhen publishing a工作空间to the Notification Service, you must still provide yourFME Flowcredentials in the HTTP Authentication fields of the Edit Service Properties dialog of the wizard.
Note ">
NoteSingle sign-on is currently supported on Internet Explorer, Firefox and Chrome.
To enable single sign-on:
- Update the Windows domain configurationto allowFME Flowto authenticate using single sign-on.
- Update the web browser configurationto use single sign-on.
- If you have not already done so, enable single sign-on as part of SASL authentication of aWindows Active Directory connection.
- (External-facing URL for Apache Tomcat only)Update the Tomcat Properties File面向外部的URL。