Configuring User Authentication and Validation - PAS Integrity Software Suite - 7.3 - Administration & Configuration - Intergraph

Integrity Administration Guide

Language
English
Product
PAS Integrity Software Suite
Subproduct
Cyber
Search by Category
Administration & Configuration
PAS Version
7.3

In most cases, you should use Windows authentication. This authentication method allows you to rely on Windows users and groups, which can simplify user and group management. A number of features in Integrity allow you to assign work to users, such as workflow cases and punch lists. These features are easier to manage with Windows users and groups. In addition, other features like baselines and vulnerability management use the workflow support.

To configure user authentication and validation:

  1. In the Admin Utility, click the Users and Groups link.

  2. Select the authentication method:

    • Application authentication: When users open the Integrity web interface or the Admin Utility, they are prompted to log in with a user ID and password defined in the Admin Utility. If you select this option, an administrator must define every user account in this window. If you want to run Integrity remotely without Active Directory available for authentication, select this option.

      If you integrate the PAS Dashboard with the Integrity web interface, the PAS Dashboard also uses Windows pass-through authentication when displaying non-precalculated data. For more information, see the PAS Dashboard User Guide.

    • Windows authentication: When a user opens the Integrity web interface or the Admin Utility, the current Windows user account determines whether the user is authorized. This method allows you to use Windows users and groups to assign roles in Integrity and it simplifies user management. Several features, such as Document Manager and workflows, require or work best with Windows authentication. For more information, see Understanding Active Directory Integration.

  3. If you chose to use Windows authentication, select whether to validate users (Will the application validate users?):

  • Yes: Requires you to add one or more Windows users or groups in Integrity, and assign a role to each user or group who should have Integrity access. If you select Yes, users who do not have defined roles cannot access Integrity.

  • No: Allows all Windows users to access Integrity automatically without adding Windows groups and their members. If you select No, all users who are not defined as administrators have the permissions associated with the User role.

Make sure you have at least one user defined as an administrator before you close the Admin Utility.