Auto Logon Helper

(Feature available only in Premium and Enterprise Editions)

Automatically Logging in to Remote Systems & Applications

Passwords of remote systems and applications are stored in Password Manager Pro. Normally, to log in to the systems and applications, you need to copy the password from Password Manager Pro and paste it in the target system. Password Manager Pro provides an option for automatically logging in to the target systems and applications directly from the Password Manager Pro web interface, eliminating the need for copying and pasting of passwords.

To archive this, Password Manager Pro provides a mechanism called "Auto Logon Gateway".

Auto Logon Gateway

How does this feature work?

From version 6500, Password Manager Pro comes bundled with RDP, SSH and Telnet session gateways. This allows the users to launch remote terminal sessions from their browser that are tunneled through the Password Manager Pro server. The remote terminal sessions are emulated in the browser screen itself and hence there is no need for installing any plug-in or agent in any end-points. The only requirement is that the browser should be HTML 5 compatible (For example IE 9 or above, FF 3.5 or above, Safari 4 or above, Chrome).

As soon as an administrator adds a resource that supports one of these remote terminal session types, the feature becomes available to all users in the system who have access to that resource, with no further configuration anywhere. In addition, the 'Connections' will allow users to easily locate remote accounts and launch a session with a single click.

The entries in the 'Connections page with the names 'Windows Remote Desktop', 'SSH' and 'Telnet' belong to this type and come out-of-the-box. No additional configuration or management is required for these types other than modifying their names for your convenience. Resource-level configuration like port to connect for SSH (if different than the default 22) and logging into a Windows machine using a domain service account can be performed in a specific resource or for a set of resources.

How to set up Auto Logon Gateway

As mentioned above, Password Manager Pro comes bundled with RDP, SSH, SQLand Telnet session gateways. This allows the users to launch remote terminal sessions from their browser that are tunneled through the Password Manager Pro server. The remote terminal sessions are emulated in the browser screen itself and hence there is no need for installing any plug-in or agent in any end-points. The only requirement is the browser should be HTML 5 compatible (For example IE 9 or above, FF 3.5 or above, Safari 4 or above, Chrome).

Auto Logon configuration while adding resources

When administrators add a resource that supports one of these remote terminal session types, the configuration for Auto Logon has to be made in Step 3 of the resource addition process.

  • For logging into a Windows resource, you need to configure the domain account that can be used by users to authenticate a Windows RDP session to this remote host. (You can authenticate with local accounts also. This is just another option).
  • To connect through SSH, you need to specify the port to connect, if it is different than the default 22.

Port Requirements

The Windows RDP Auto Logon Gateway listens at port 7273 by default. This is a secure web socket port (wss://) and you should allow traffic to this port from the end user machines for this to work. You can change this port from Admin >> Settings >> Password Manager Pro Server >> Remote Desktop Gateway Port. Password Manager Pro web server (7272 by default) and this gateway should open and listen at different ports.

Important Note: When Password Manager Pro is installed, it generates a self-signed SSL certificate for the instance which is also used by the Auto Logon Gateway to encrypt the traffic. It is recommended that you apply a CA signed certificate to the Password Manager Pro instance before opening it out for end users. In case of a self-signed certificate, connecting to the gateway is not possible unless users explicitly mention the gateway port in the URL, accept the warning and install the self-signed certificate. (For steps to generate unique SSL certificate, refer to this section of our site).

The SSH and Telnet Gateways have no such requirement as they use the same Password Manager Pro web server port for all communication.

Invoking Auto Logon through Gateway

As soon as an administrator adds a resource that supports one of the three remote terminal session types (Windows RDP, SSH, SQL and Telnet sessions), the feature becomes available to all users in the system who have access to that resource, with no further configuration anywhere. The 'Connections' tab will allow users to easily locate remote accounts and launch a session with a single click.

©2014, ZOHO Corp. All Rights Reserved.

Top