Secure Global Desktop 4.40 Administration Guide > Users and Authentication > Anonymous User Authentication

Anonymous User Authentication

Anonymous user authentication allows users to log in to SGD without using a user name and password.

As users are anonymous, SGD assigns each anonymous user a temporary user identity. The user identity is only effective while the user is logged in.

Anonymous user authentication is disabled by default.

This page includes the following topics:

• How Anonymous User Authentication Works
• Enabling Anonymous User Authentication

How Anonymous User Authentication Works

At the SGD login screen, the user clicks the Log in button, leaving the user name and password blank.

If the user types a user name or a password, the authentication fails and the next authentication mechanism is tried.

If both the user name and the password are blank, the user is authenticated and is logged in.

User Identity and User Profile

As the user does not supply a user name or password when they log in, SGD assigns a temporary user identity. In the SGD Administration Console, the user identity is displayed as server:number (anon). On the command line, the user identity is displayed as .../_dns/server/_anon/number.

The profile object System Objects/Anonymous Profile is always used for the user profile. All anonymous users receive the same webtop content.

Application Sessions and Password Cache Entries

Each user logged in anonymously has independent application sessions. The application sessions end automatically when the user logs out even if the application is configured to be always resumable.

All password cache entries belong to the System Objects/Anonymous User Profile object. All anonymous users share the same application server passwords. Anonymous users are not allowed to add or change entries in the password cache. This means that, unless a Secure Global Desktop Administrator has cached application server passwords for the System Objects/Anonymous User Profile object using the tarantella passcache command, anonymous users are prompted for a password every time they start an application.

Enabling Anonymous User Authentication

1. In the SGD Administration Console, display the Secure Global Desktop Authentication Configuration Wizard.

   On the Global Settings » Secure Global Desktop Authentication tab, click the Change Secure Global Desktop Authentication button.

2. On the Third-Party/System Authentication step, ensure the System Authentication check box is selected.
3. On the System Authentication - Repositories step, select the Anonymous check box.
4. On the Review Selections step, check your authentication configuration and click Finish.

Copyright © 1997-2007 Sun Microsystems, Inc. All rights reserved.