Are there any 'projected' plans to make Orion NPM's web interface use Smart Card Authentication? Or is there currently a way to do it?
Thanks,
Sorry, that's not currently in the works. We are, however, planning to integrate more closely with AD, which may get you where you need to be.
I've been able to login to Orion\Login.aspx with my SMART CARD, but I keep getting the following error:
Please try the following:If you typed the page address in the Address bar, make sure that it is spelled correctly.Open the orion home page, and then look for links to the information you want.Click the Back button to try another link.Click Search to look for information on the Internet.HTTP 404 - File not foundInternet Explorer
Please try the following:
I'm wondering if I can edit the \Program Files\SolarWinds\Orion\Orion Web Console.url to where I can point to the "Orion Network Performance Monitor home" page. I'm just not sure which one of the files opens the page that points to the home page, and if it will need an edit also...
Is this going to work? Or do I have to settle with pass-through authentication (I'm really not too crazy about that, but if it would simplify my life, I will take it that direction). This has been pretty much trial and error so far... where do I find more documentation?
Can I get a reply on this shortly? Thanks, N.
So you were able to login via your Smart Card? If so, what did you have to do for it to even prompt you?
thanks,
Shawn
I will be happy to share, if I can get denny.lecompte to point me in the direction of the question regarding which file will open the browser. I'm also thinking that once the browser opens, will it open to the user's correct group account, or what if a drop down list were available for the user to click on.
The wheels are turning....
The "Orion Web Console.url" file points to "">http://127.0.0.1/default.asp". If you load that URL, it will go through a few redirects and take you to the Orion login page (/Orion/Login.aspx). Once you provide credentials, you'll go through a couple more redirects and wind up at the default view for your user account. In most cases, this will be /Orion/SummaryView.aspx.
Since the .url file refers to the localhost IP address, it won't work if it's invoked on a computer without the Orion web console installed. It also won't work if the IIS website is configured to use a specific IP address rather than "(All Unassigned)".
Thank you for your reply.
The process as you say is more complex, but I'm hoping that you can meet me half way. Perhaps someone can bring the web console to the smartcard login, since we have made it this far to the web console (we just need that page to open).
Not being an SME (subject matter expert) on ASP, I am working the smart card end of the process.
The process, which was requested by the information security group to be implemented somehow, involved the following:
- the Orion Web Console is installed on the server
- smart card client is installed on server
- the server is accessed via remote desktop on the intranet
- the IIS website is configured to use "(All Unassigned)".
- windows authentication is enabled, SSL also.
Results: users can login to server with smartcard authentication via remote desktop, and then login to Orion Web Console via smartcard authentication and pin code. However the result of that is the following:
=====================================================
The page cannot be foundThe page you are looking for might have been removed, had its name changed, or is temporarily unavailable.
--------------------------------------------------------------------------------
If you typed the page address in the Address bar, make sure that it is spelled correctly.
Open the orion home page, and then look for links to the information you want.Click the Back button to try another link.Click Search to look for information on the Internet.
HTTP 404 - File not foundInternet Explorer ========================================================
Maybe I should take a step back. Does the web console work at all? Log in to the server and try to access the web console by various urls and see which ones work.
http://localhost/
http://127.0.0.1/
http://hostname/
https://localhost/
etc...
There's nothing special about the .url file installed with the product - you can easily create a new one for a different URL using Internet Explorer.
I'm understanding that the web console url is not special; but this is a bit more different than being able to point to an index.htm page that will give you access to all other pages. It is not certain to me (as I am unfamiliar with ASP) as to how to go about finding the magic "index.htm" page.
The web console will not work using the urls you provided if the security features are in place (i.e. adding site to local intranet via Internet Explorer Security tab; and checking "automatically detect proxy settings"). It may require a server certificate, not sure that will solve scenario.
Once the settings mentioned above are removed, including the IIS settings to use SSL, the site can be returned to a state which can be logged into using group ID and group Password (which is not considered desireable, although it is an easier solution than creating user ID and Password for any and all that wish to login).
You are definitely seeing some strange behavior from the website. Even if certain security measures are interfering with the login process, you still shouldn't be getting 404 Not Found errors. I recommend you open a ticket with support and pursue this through that channel. I think that will be more efficient than trying to work this out on the forum.
