SCADA Security. Enabling Integrated Windows Authentication For CitectSCADA Web Client. Applies To: CitectSCADA 6.xx and 7.xx VijeoCitect 6.xx and 7.



Similar documents
Wireless Network Configuration Guide

Use the below instructions to configure your wireless settings to connect to the secure wireless network using Microsoft Windows Vista/7.

SchoolBooking SSO Integration Guide

Connecting to the University Wireless Network

Installation Guides - Information required for connection to the Goldfields Institute s (GIT) Wireless Network

Windows XP Exchange Client Installation Instructions

Note that if at any time during the setup process you are asked to login, click either Cancel or Work Offline depending upon the prompt.

IIS, FTP Server and Windows

Using Internet or Windows Explorer to Upload Your Site

For paid computer support call

Application Note. ShoreTel 9: Active Directory Integration. Integration checklist. AN June 2009

Connect to the Sheridan College / Gillette College - STUDENT Secure Wireless Network with the PEAP Client (Windows XP Pro)

Windows Vista: Connecting to the wireless network at Hood College

User Guide for eduroam

How To Set Up Chime For A Coworker On Windows (Windows) With A Windows 7 (Windows 7) On A Windows 8.1 (Windows 8) With An Ipad (Windows).Net (Windows Xp

Creating a User Profile for Outlook 2013

University Computing & Telecommunications Virtual Private Networking: How To/Self- Help Guide Windows 8.1 Operating System.

NT Authentication Configuration Guide

Desktop Web Access Single Sign-On Configuration Guide

Active Directory Authentication Integration

How To Set Up Hopkins Wireless On Windows 7 On A Pc Or Mac Or Ipad (For A Laptop) On A Network Card (For Windows 7) On Your Computer Or Ipa (For Mac Or Mac) On An Ipa Or

Immotec Systems, Inc. SQL Server 2005 Installation Document

Instructions for accessing the new TU wireless Network

Defender Token Deployment System Quick Start Guide

How to Access Coast Wi-Fi

Windows 7 Hula POS Server Installation Guide

Configuring Sponsor Authentication

Cloud Services ADM. Agent Deployment Guide

Tufts VPN Client User Guide for Windows

Network Services One Washington Square, San Jose, CA

Livezilla How to Install on Shared Hosting By: Jon Manning

NetBeat NAC Version 9.2 Build 4 Release Notes

Integrating LANGuardian with Active Directory

Virto Password Reset Web Part for SharePoint. Release Installation and User Guide

eduroam Network guide configuration for Microsoft Windows 7

Using etoken for Securing s Using Outlook and Outlook Express

MultiSuite for Investor Reporting Windows 7 Upgrade. Internet Explorer (IE) setting updates

Installation and Setup Guide

How to configure your Windows PC post migrating to Microsoft Office 365

VERALAB LDAP Configuration Guide

Configuring Color Access on the WorkCentre 7120 Using Microsoft Active Directory Customer Tip

Wireless Setup for Windows 8

Download/Install IDENTD

Reference and Troubleshooting: FTP, IIS, and Firewall Information

Install SQL Server 2014 Express Edition

QUANTIFY INSTALLATION GUIDE

ParishSOFT Remote Installation

Symantec PGP Whole Disk Encryption Hands-On Lab V 3.7

VoIP Intercom with Allworx 6x Server Setup Guide

Setup Corporate (Microsoft Exchange) . This tutorial will walk you through the steps of setting up your corporate account.

Johns Hopkins

Update Instructions

Alert Notification of Critical Results (ANCR) Public Domain Deployment Instructions

Montefiore Portal Quick Reference Guide

Creating a generic user-password application profile

Remote Terminal Service (RTS) User Guide (Version 2.1)

NeoMail Guide. Neotel (Pty) Ltd

Active Directory Integration for Greentree

In this topic we will cover the security functionality provided with SAP Business One.

Getting Started with AD/LDAP SSO

How to connect to NAU s WPA2 Enterprise implementation in a Residence Hall:

Edith Cowan University Information Technology Services Centre

Active Directory Management. Agent Deployment Guide

Active Directory Integration

Contents. Before You Install Server Installation Configuring Print Audit Secure... 10

MBC WiFi wireless logon: Windows 7 (laptop)

Wireless LAN Client Configuration Guide for Windows Configuring 802.1X Authentication Client for Windows 7

NSi Mobile Installation Guide. Version 6.2

Customer Tips. Configuring Color Access on the WorkCentre 7328/7335/7345 using Windows Active Directory. for the user. Overview

FTP, IIS, and Firewall Reference and Troubleshooting

Mac OS X Secure Wireless Setup Guide

Netcomm NB604N. Modem Configuration Guide. Netcomm NB604N. Configuring in Layer2 PPPoE for Windows XP and 2000 IMPORTANT MESSAGE

Integration Guide. Microsoft Active Directory Rights Management Services (AD RMS) Microsoft Windows Server 2008

ECA IIS Instructions. January 2005

Guide to Configuring the UHU Wireless Network for Windows Vista

ShareFile On-Demand Sync can be installed via EXE or MSI. Both installation types can be downloaded from

How to connect to the diamonds wireless network with Vista.

FieldIT Limited FieldIT CRM. Installation Manual v1.3.i3 (Enterprise Install)

Contents. VPN Instructions. VPN Instructions... 1

Install and End User Reference Guide for Direct Access to Citrix Applications

External Authentication with Windows 2012 R2 Server with Remote Desktop Web Gateway Authenticating Users Using SecurAccess Server by SecurEnvoy

Instructions: Configuring Outlook 2003 with Exchange 2010 on the FIUMail

Upgrading from MSDE to SQL Server 2005 Express Edition with Advanced Services SP2

WIRELESS SETUP FOR WINDOWS 7

Web Meetings through VPN. Note: Conductor means person leading the meeting. Table of Contents. Instant Web Meetings with VPN (Conductor)...

This document is intended to make you familiar with the ServersCheck Monitoring Appliance

Update Instructions

SETTING UP REMOTE ACCESS ON EYEMAX PC BASED DVR.

Authentication Methods

How to Configure Active Directory based User Authentication

INFORMATION SYSTEMS SERVICE NETWORKS AND TELECOMMUNICATIONS SECTOR

Phone: Fax: Box: 230

User Guide. Voice Services Self Care Portal. Logging In. Welcome to the Self Care Portal

Step by step guide for connecting PC to wired LAN at dormitories of University of Pardubice

Access to Webmail services via a Non Trust Computer

Toll Free: International:

REMOTE ACCESS USER GUIDE

The FlexiSchools Online Order Management (FOOM) Installation Guide

Remote Desktop access via Faculty Terminal Server Using Internet Explorer (versions 5.x-7.x)

WEB CONFIGURATION. Configuring and monitoring your VIP-101T from web browser. PLANET VIP-101T Web Configuration Guide

Transcription:

Enabling Integrated Windows Authentication For CitectSCADA Web Client Applies To: CitectSCADA 6.xx and 7.xx VijeoCitect 6.xx and 7.xx Summary: What is the difference between Basic Authentication and Windows Integrated Authentication? How do I enable Windows Integrated Authentication with Citect Web Client? Solution: Authentication is required to access a web server over Intranet or Internet when the resources on the system are not made available on the public domain but rather only to approved users. Of the four different types of authentication, this document only compares two major types, Basic Authentication and Windows Integrated Authentication, and their use with the CitectSCADA Web Client. These two types of Authentication are outlined below as per Microsoft Knowledge Base Article 324276, at the URL http://support.microsoft.com/kb/324276/en-us at the time of writing. Basic Authentication This type of authentication requires the user to enter a user ID and a password. This provides a low level of security. User credentials are sent in clear text across the network. This format provides a low level of security because the password can be read by almost all protocol analysers. However, it is compatible with the widest number of Web clients. This option is best used when you want to grant access to information with little or no need for privacy. Because user credentials are encoded with Base64 encoding but they are not encrypted when they are transmitted over the network, basic authentication is not considered a secure form of authentication. Windows Integrated Authentication This type of authentication is more secure than basic authentication, and it functions well in an intranet environment where users have Windows domain accounts. In integrated Windows authentication, the browser tries to use the current user's credentials from a domain logon, and if this attempt is unsuccessful, the user is prompted to enter a user name and password. If you use integrated Windows authentication, the user's password is not transmitted to the server. If the user has logged on to the local computer as a domain user, the user does not have to authenticate again when the user accesses a network computer in that domain. Note that you must use Microsoft Internet Explorer 2.0 or later as your Web browser if you are using Windows Integrated authentication (Please note that you will need a minimum of Windows IE 6 to use Citect Web Client). Enabling Windows Integrated Security on the CitectSCADA Web Server Enabling Windows Integrated Security would first of all require the user to log on as an Administrator or as a user with Administrative privileges on the computer acting as the web server. Go through the Web Client- Quick Start v1.doc and create 'testdisplay', 'testmanager' and 'webclientadmin' users and add them to their respective groups. Also add a user who has access to the domain via a user ID and Password.

Add the user (in this instance Raj.Singh) to the group 'Web Client Administrator' on the Web Server (in this instance SYD-D-SIMONROOK).

To access the system via the Web Client with Basic Authentication (the default setting), open up Internet Explorer and enter the URL http://<server>/citectscada/, where <server> is either the server PC name, server PC IP address or localhost if the Web Client is running on the Web Server PC. A login screen will appear as shown below.

Enter the login details for the user. Once the user credentials are verified the screen that is supposed to appear is shown below. To switch from Basic Authentication to Integrated Windows Authentication, go to Administrative Tools from the Control Panel and start IIS manager by double clicking on IIS icon.

Expand Server_name (which in this case is SYD-D-SIMONROOK) and then expand Web Sites. Right select the CitectSCADA virtual directory and select Properties.

Select the Directory Security tab and click on Edit to edit the Authentication control. On Authentication Methods window, uncheck Basic Authentication and check Integrated Windows Authentication.

Reboot both PCs (server and client). On restart, the user (in this case Raj.Singh) will be able to view the Web Client admin page from his client PC without having to enter his username and password. That is, he could access the page via Integrated Windows Authentication.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information