Sparx Systems Forum

Enterprise Architect => General Board => Topic started by: PeterHeintz on June 07, 2018, 09:49:27 pm

Title: WebEA with „Accept Windows Authentication”
Post by: PeterHeintz on June 07, 2018, 09:49:27 pm
Currently I am able to access a model via WebEA with a pure EA user (no LDAP/ADS).
However my model uses “Accept Windows Authentication” to have users coming from our company ADS.
But I cannot log in as an ADS users.

Any idea?
Title: Re: WebEA with „Accept Windows Authentication”
Post by: Aaron B on June 08, 2018, 10:25:56 am
Hi Peter,

WebEA does not support any integration with Active Directory.

For WebEA access (assuming your model has security enabled) you have two configuration options.

a)
login_prompt = "true"

In which case users will need to enter a user ID and password as assigned in EA. Note, if you have been using the Windows Authentication option in EA then you may need to manually assign passwords to these users in EA (if you have not already).

b)
login_prompt = "false"
sscs_model_user = "<user id>"
sscs_model_pwd = "<password>"

In which case users will be automatically logged in as the specified user.
Title: Re: WebEA with „Accept Windows Authentication”
Post by: PeterHeintz on June 08, 2018, 04:25:13 pm
Hi Aaron,
I have configured WebEA with login_prompt =true.

On the model level I have enabled the Windows Authentication and no user has set any EA user password within the model.

My expectation is, that once a user inserted in the WebEA login prompt his/her windows account name and password, the login is done.
What is wrong with that expectation?
Title: Re: WebEA with „Accept Windows Authentication”
Post by: Nizam on June 11, 2018, 05:44:50 pm
Hi Peter
Authenticating a Windows user from a web portal isn't possible unless the Web Application supports LDAP (and have access to LDAP server). Reading a windows user isn't possible.

For a sample configuration of LDAP in Publishing portals, you can refer to https://prolaborate.com/resources/documentation/setup-active-directory
Title: Re: WebEA with „Accept Windows Authentication”
Post by: PeterHeintz on June 11, 2018, 07:52:16 pm
Yes, we have several web applications, we had to configure to use LDAP to have a single sign on.
I missed this configuration within WebEA, however I had a little hope, that the “Worker” may provide that bridge somehow.

So currently I assume that LDAP/ADS is not supported by WebEA.
One point for Porlaborate!!!

Anyhow I will raise a feature request.
Title: Re: WebEA with „Accept Windows Authentication”
Post by: Sunshine on June 12, 2018, 08:34:52 am
Try
https://www.sparxsystems.com.au/support/forms/feature_request.html (https://www.sparxsystems.com.au/support/forms/feature_request.html)

BTW thanks for sharing this experience. I've been thinking of moving to WebEA to open up the model to more folk. However the lack of LDAP or AAD integration has put me off for now.

Thanks for saving me the time and effort to discover this for myself.