There are 4 options for authenticating the user which are described below:
1) Authentication through single sign-on
If Asset Bank is integrated with an LDAP server and single sign-on is already setup for Asset Bank then this is the best method to authenticate users. When the user accesses Asset Bank they will be automatically signed on to Asset Bank providing they are accessing Asset Bank using Internet Explorer and are logged in to their workstation with an account which has been synchronised with Asset Bank. If a user is using a different browser or is not logged in to their workstation with an account synchronised with Asset Bank they will still be able to login but will have to supply their username/password.
2) Manual sign-on
If single sign-on is not available then users can simply login to Asset Bank with their username/password. Functionality to allow users to select “Remember my username/password” can be enabled in Asset Bank so that users do not need to provide their credentials every time.
3) Simple authentication
You can simply provide the user’s username as a parameter when calling Asset Bank. Asset Bank will then log the user in without requiring their password. This solution is not recommended if your Asset Bank is available over the internet as it could be used to gain unauthorised access. However, it is simple to setup so could be a good option if your Asset Bank is hosted internally.
4) Encrypted username authentication
You can also provide the user’s username to Asset Bank in an encrypted form. This is an extension to the simple authentication described above but is more secure as the encrypted username prevents unauthorised access.