Optionally, extended DMS can be configured to mirror the Patricia trusted login feature set (SSO). When trusted login is configured, users will not be required to enter a password when accessing the case browser, or to Nuxeo, when a document is right-clicked and the user selects "via in DMS server".
Please note that to make this work Nuxeo server and case browser must sit on the same machine.
Enable the static password feature, set a static password for the environment in the /etc/nuxeo/pi-nuxeo.xml file (or C:\ProgramData\Nuxeo\conf\pi-nuxeo.xml on Windows). The pi-nuxeo.xml is not accessible to users. Add below settings (static password should be set to something stronger than example):
<entry key="sso.mode.enabled">true</entry> <entry key="sso.static.pass">123456</entry> <entry key="ad.domain.name">GHFIP.local</entry> <entry key="ad.server.addr">192.168.3.20</entry> |
The active directory domain name and server address will be used to authenticate users when they log in from home machine.
The WebDav drive in this scenario will be mounted using the windows username (in uppercase) and the SSO password configured in pi-nuxeo.xml (described above).