SSO between Enterprise Client and ECS

Forum / NoMachine Cloud Server Products / SSO between Enterprise Client and ECS

Tagged: 

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • February 28, 2025 at 19:33 #51978
    Steve92
    Participant

    Hello,

    I don’t find many info about how to get SSO between “Enterprise Client” and ECS… 🙁

    “Enterprise Client” is on a Windows 11 PC (without admin rights).

    ECS is on a RHEL9.4 server.

    Authentication is done with a smartcard and a PIN or a user/password pair in an Active Directory.

    ECS is connected to the same AD, I can get a ticket with kinit for my user/password.

    How can I get SSO with this environment ?

    = login to ECS without typing again user/password .

    Any detailed documentation ?

    Thanks!

    Regards,

    Steve.

     

     

    March 4, 2025 at 12:13 #52062
    Guro
    Contributor

    hello

    “Authentication is done with a smartcard and a PIN or a user/password pair in an Active Directory.

    ECS is connected to the same AD, I can get a ticket with kinit for my user/password.”

    We can recommend use kerberos authentication as client and server host in same ad domain.

    You need enable kerberos authentication on server by edit /usr/NX/etc/server.cfg and update keys

    #EnableNXKerberosAuthentication 0

    to

    EnableNXKerberosAuthentication 1

    Please ensure that AD user is correctly seen on server host:

    if commands: id ,  getent passwd | grep , su

    correctly list/switch on user. more details for kerberos authentication might be check on https://kb.nomachine.com/DT07S00230

    Thanks

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Please login .