Support Suite

Main

Knowledgebase: Help Guides
Windows Authentication in the Browser Interface
Posted by Jacob Fairbairn on 01 May 2013 09:16 PM

 

If you are a Customer-Hosted customer, you have the option to allow users to automatically log in to the EIOBoard Browser Interface based on their Windows credentials (if their Windows credentials match their EIOBoard credentials). This is a perfect way to take advantage of EIOBoard’s Active Directory Sync feature. Note: This feature requires you to run EIOBoard Server version 8.0.54 or higher. If your server is too low, you can upgrade here: EIOBoard Releases

Note: This article applies to Windows Authentication in the Browser Interface of EIOBoard (which is compatible with SharePoint). If you would like to set Windows Authentication for the Application or Outlook Add-In instead, follow the instructions in the following article:

Windows Authentication in the EIOBoard Application or Add-In

 

To set up Windows Authentication in the Browser Interface, follow the instructions below:

 
  1. First of all, you need to make sure that the Windows Authentication role is installed. If it is already installed, you can skip to step 10. If you are not sure, it does not hurt to still go through the following steps to check to see if it is installed.

  2. Open up the Server Manager.

  3. In the tree-explorer on the left, expand Roles and click on Web Server (IIS).

  4. Go to the Role Services section and click on Add Role Services.

  5. The Add Role Services window will pop up. Check the box next to Windows Authentication (Web Service > Security > Windows Authentication) and click . If this box is already checked with the word “(Installed)” next to it, then you’ve already installed Windows Authentication, and you can skip to step 10.

  6. It will confirm that you chose the correct Role to add. Click .

  7. The installation will take a few minutes. You can see the progress throughout the installation.

  8. When the installation is done, it will tell you that the installation succeeded. Click Close.

  9. If it prompts you to restart your server, do so now.

  10. Open up IIS (Internet Information Services). Browse to your EIOBoard website and click .

  11. In the Authentication screen, make sure the only enabled item is Windows Authentication. (You can enable/disable an item by right-clicking on it).
    If you prefer to use Active Directory to manage the user account passwords and require your users to login, enable Anonymous Authentication and Forms Authentication to prompt users with the Login page.

    • NOTE: If you have EIOboard web installed as a virtual directory, you will need to disable Anonymous and Forms Authentication on the Default/Parent Site as well.

  12. Now, you need to edit the Application Settings for your EIOBoard web site. In IIS, expand the sites to select the EIOBoard web site.

  13. Double-click on the Application Settings icon.

  14. Edit the AutoWindowsAuthentication key, change this value to true.

  15. Edit the EnableIISWindowsAuthentication key, change this value to true.

  16. Confirm the ValidatePasswordUsingActiveDirectory key has a value of true.

  17. The EnableActiveXWindowsAuthentication key is not required for the newest versions of the EIOBoard server.
     

  18. Add read permissions to the UserPictures folder for the "Domain Users" group.




  19. On your client PCs and workstations, add the website to the Local Intranet.

You could add a wildcard FQDN for your domain similar to what we have shown below.

 

Be sure that the local intranet permits automatic logon.


Your Windows credentials will now be automatically logged into the EIOBoard browser application!