Configuring Netilla for Single Sign-on

Scope

This technote details the four simple steps needed to enabling single sign on to your Windows Terminal server from the initial Netilla Login.

It is assumed that SMB authentication has already been established and tested between the Netilla platform and the Windows 2000 domain.

Solution

The following four steps will enable single sign on.

• Having logged on to the local realm of the Netilla platform using either radmin or admin, follow the path to System Configuration > Authentication Settings > Your Realm and define an Authentication Scope.
• Next, follow the path to Applications, then for each application you want to be "single signed on" define the same Authentication Scope.
• Be default the next step should be automatically set, but ensure that in http://yournetilla.yourdomain/config under the Applications Services Settings > Enable password forwarding is set to Yes.
• The final step needs to be performed on the Windows Terminal Server itself. Under Terminal Services Configuration right click on RDP-Tcp and chose Properties. Uncheck "Always Prompt for Password" on the Logon Settings tab.

Once this has been completed, users shouldn't be prompted for their passwords again when selecting Terminal Server applications from the My Apps screen.