• State Not Answered
  • Replies 3 replies
  • Subscribers 6 subscribers
  • Views 1140 views
  • Users 0 members are here
Options
Related

Is there a good “Integrated Windows Automatic login” howto document?

brscott

Is there a good complete resource for setting up SolarWinds web server for integrated windows authentication, specifically while being in a cluster? 

By “integrated windows auth”, I mean where it uses the currently logged in user information from windows and does not prompt for login/password.

 

I’ll add a post about what I have done and where I am currently, but I primarily want to know if there is a good how-to page already out there for this.

Parents
  • 0

    Here's where I am:

    * Orion version: 2022.4.1

    * additional web server: orionwebserver1.example.com

    * polling engines, web servers, and workstations are all in the same domain.

    * DNS alias orion.example.com that points to the above server name

        *  This will eventually be on the F5 load balancer, but a DNS alias should be a good proof of concept.

    * In Orion ->  Settings -> All Settings -> Web Console Settings -> Windows Account Login: enable automatic login

    * if I go to the server by it’s name, orionwebserver1.example.com, then I am not prompted for credentials, it just uses my current logged in user.  So I know it *can* handle Windows integrated authentication. 

    * If I go to https://orion.example.com, then it goes to the login.aspx page.  I can login, where I have to type my username and password.

    * I created a user, "DOMAIN\OrionWebServers"

    * In IIS Manager, I change the "SolarWinds Orion Application Pool" Identity to a custom account with the user I created above.

    *  Also in IIS manager, went into the site “SolarWinds NetPerfMon” -> Authentication.  Make sure Windows Authentication is enabled. 

    * I added the SPN “HTTP/orion.example.com” to the user created above.

    * I added the user to the local IIS_IUSRS group (just for debugging I even added the user to the local administrators group)

    * I configured the user account to be "Trusted for delegation."

     

    Still https://orion.example.com goes to the login page, but going to the server name logs right in without prompting.  What am I missing and is there any way to debug it?

  • 0 in reply to brscott

    Anyone?

    Having the same problem. Solarwinds is so ***. Product with years of history has no documentation for basic functionality and no even basic support.

Reply Children
No Data

SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 195,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.

SolarWinds Customer Success Center Certification Media Vault Link Accounts
About THWACK Blogs For Government Edit Settings Free Tools & Trials
Legal Documents Terms of Use Privacy California Privacy Rights Security Information
©2024 SolarWinds Worldwide, LLC. All Rights Reserved.