Skip past navigation linksSecure Global Desktop 4.31 Administration Guide > Applications, documents and hosts > Windows NT Domain (--ntdomain)

Windows NT Domain (--ntdomain)

Objects with this attribute

Object Manager

Attribute name Usage
Windows NT Domain In the box, type the Windows domain to use for authentication.

Command line

Command optionUsage
--ntdomain dom Replace dom with the Windows domain to use for authentication.

Description

This attribute specifies the Windows domain to use for the application server authentication process.

Note This attribute plays no part in the Secure Global Desktop login.

Caching passwords

If a user's Secure Global Desktop password is also their Windows domain password, then it is possible to cache this password by setting the Windows NT Domain attribute on the appropriate person or profile object from ENS. As long as saving Secure Global Desktop passwords is enabled, the domain name and password are then stored in the password cache. (If necessary, the Administrator can configure the Authentication dialog to disable password caching.)

See also Managing passwords.

Note When using Active Directory, the Windows NT domain attribute does not need to be set on the person or profile object.

The authentication process

When a Windows application is launched, Secure Global Desktop goes through the following authentication process:

  1. Check if the host object has a Windows NT domain set for it. If it does, find the username and password in the application server password cache. If password caching is disabled, prompt for the username and password. Otherwise,
  2. Check if the application object has an Windows NT domain set for it. If it does, find the username and password in the password cache. If password caching is disabled, prompt for the username and password. Otherwise,
  3. Check the domain stored during login. If the user was logged in using an Active Directory server, the domain name can be inferred from this. Use the domain to find the username and password in the password cache.

User-specified domains

If you want to allow users to specify their own domains, make sure that the value of this attribute is blank for the host, the application and the person object.

When starting Windows applications, the user can change the domain using the NT Domain field on the Authentication dialog. This field is automatically completed if the NT domain is set for the host or application object or cached, but not if the NT domain is set for the person object.

Note A user can override the NT Domain attribute by typing a username in the format domain\name, for example indigo\rusty.

Examples

Skip past command syntax or program code--ntdomain indigo

Authenticates using the domain indigo.

Related topics

Copyright © 1997-2007 Sun Microsystems, Inc. All rights reserved.