When an AD user tries to access HCP using a client application that supports Integrated Windows authentication (such as Firefox, Internet Explorer, or Windows Explorer):
•While logged into Windows with a recognized AD user account, HCP accepts the already authenticated credentials from the client computer and lets the user access the requested interface. This is called single sign-on.
![]() |
Note: Tenant administrators can configure individual namespaces not to support single sign-on with HTTP-based interfaces (such as the HCP Namespace Browser). |
•With a recognized AD user account other than the one with which the user is currently logged into Windows, HCP sends the specified user credentials to AD for authentication. If AD successfully authenticates the user, HCP lets the user access the requested interface.
As defined in System Management Console, a recognized AD user account is an AD user account for a user that belongs to one or more AD groups for which corresponding group accounts are defined in HCP. For more information on group accounts, see About user and group accounts.
© 2016 Hitachi Data Systems Corporation. All rights reserved.