How to set up Geocortex to use ArcGIS Portal integrated windows authentication?
Hi there,
I am trying to set up Geocortex to use ArcGIS Portal single sign in using integrated windows authentication. We have this set up so when users hit ArcGIS Portal they don't need to log in, but when a user goes to a Geocortex site they get the Portal log in page (see below). How can we configure it so users have single sign on?_img_ alt="User-added image" src="https://latitudegeo--c.na53.content.force.com/servlet/rtaImage?eid=906f2000000kA1z&feoid=Body&refid=0EMf2000000g0A5"_/_img_
Thanks,
Inga
0
-
I don't know if Latitude have anything new to add. But windows AD SSO intergrated ArcGIS Portal and Geocortex dosn´t work as you hope for.
there is a workaround describet here ESRI Portal and Integrated Windows Authentication – VertiGIS
0 -
Thanks for the response Sebastian.
We have used the workaround in the link to access ArcGIS Portal data in our site. However we don't want users to have to sign in. I had hoped ArcGIS identities would flow through and all would be streamlined.
What do other organisations do? Should we be accessing services direct from ArcGIS server ?
I am new to Portal so these are probably newbie questions and any guidance much appreciated.0 -
I am not sure what to do... Is AD single sign on integrated with ArcGIS Portal & Geocortex definitely not a possiblity? 0 -
Watching with interest as I am facing the same problem...
The install guide also says that the Windows authentication mode cannot handle private ArcGIS Portal content. Is there really no way to have a Windows SSO experience and be able to use private content?0 -
Also interested in this. We are about to deploy Portal with AD federation. 0 -
In the end we switched to SAML as the identify provider for Portal. As suggested, using windows authentication we could not get the SSO experience we needed. 0 -
@Inga, could you expand on how you are using SAML? Do you just set up the connections in Geocortex Manager like any other ArcGIS Server connection and then everything just works in the viewer? We are about to deploy Portal using SAML and any advice or info on pitfalls/issues would be appreciated. We have some Geocxortex viewers that have been around for years and I don't want to have to rebuild all of them. 0 -
Dan,
I assume Inga went through the process outlined by ESRI (link below). If that process leaves Anonymous Access enabled in the IIS authentication settings for the ESRI Web Adaptor then Essentials will work fine. There shouldn't be any special configuration steps for Portal/Essentials.
http://enterprise.arcgis.com/en/portal/latest/administer/linux/configuring-a-saml-compliant-identity-provider-with-your-portal.htm
Thanks,
Mike Ketler0 -
As Mike said, we left Anonymous Access enabled on the web adaptor and then everything ran pretty smoothly. We use permissions in the site manager to allow/deny access according to ArcGIS Enterprise 0 -
Thanks for the replies. Just to clarify: the web services are not public, you just need to enable anonymous access? All services are then being viewed in the Geocortex viewers through the Portal admin account, correct? 0 -
Hi Dan, the web services don't have to be public. If you register Portal in the Essentials post installer then your users sign in to the Geocortex viewers with their ArcGIS Identity. Using SAML they don't have to enter credientials. You can then use the ArcGIS security provider in the site manager to set permissions based on ArcGIS Portal groups. 0
Du måste logga in om du vill lämna en kommentar.
Kommentarer
11 kommentarer