ONE CLICK AUTO LOGON FOR WEB APPLICATIONS
Note: This feature is deprecated from version 9000 due to security issues. Please make use of our extensions to perform one-click auto logon.
PAM360 allows users to log in to web applications with just a few clicks, instead of manually entering the information. This is achieved by the users installing the PAM360 bookmarklet in their browsers. The bookmarklet helps in auto-logon by auto-filling the login page of web applications with the appropriate username/password credentials.
What is a bookmarklet?
Every browser allows users to create bookmarks for URLs. A browser bookmark typically contains a static URL and clicking the bookmark opens the URL. A bookmarklet is similar to a browser bookmark, but additionally it contains a piece of unobtrusive script. Clicking on the bookmarklet not only opens the URL, but executes the script which can be used to perform a few tasks on the opened URL. A bookmarklet is a secure mechanism to bring dynamism to browser bookmarks.
How does PAM360 use bookmarklet for auto logon?
As a requisite step, the PAM360 user must install the PAM360 bookmarklet in their browser's bookmarks bar. To use auto logon, the user clicks the right resource-name/account-name pair and then the PAM360 bookmarklet in the bookmarks bar. This bookmarklet first opens the URL of the web app and then executes a script that accesses the PAM360 web server, retrieves the username/password for the requested web app, populates the fields in the login page of the web app and finally submits the page for authentication. The script works only when the user is logged into PAM360 and is on the right login page of the application.
To use the PAM360 bookmarklet for auto logon,
- Navigate to Connections tab.
- Click "Web App Connections".
- Drag the bookmarklet-button to the bookmarks bar to install it. This is a one time action required for every browser you use to access PAM360.
One-click auto logon
- Auto logon can be initiated either from "Connections" tab or "Passwords" under Resources tab.
- Locate the right resource-name/account-name that you want to log in to.
- Invoke the 'Open URL' against the appropriate credential. This will open the URL in a new browser window or tab.
- Now click the PAM360 bookmarklet in the browser's bookmarks bar.
- If you have permission to access more than one credential for this URL, the choices will be shown as a pick list. Choose one from the pick list.
- This will populate and submit the login information. and if the authentication is successful, you will be allowed access to the web app.
When using public or shared computers to access PAM360 and subsequently bookmarklet-based auto logon, make sure to remove the Passsword Manager Pro bookmarklet from the bookmarks bar after you are done using PAM360. Though the bookmarklet does not work when there is no valid PAM360 session in the browser, the script may be used to obtain information about PAM360 server's DNS name etc., which can be avoided. The bookmarklet can be installed or removed easily as required.
High availability scenario
If you have configured high availability, in the event of failover, when you connect to PAM360's secondary server, the bookmarklet installed for the primary server will not work for the secondary. You need to install bookmarklet for the secondary separately.