Caché Security Tutorial
Example Three: Delegated Authentication (cont.)
[Home] [Back] [Next]
InterSystems: The power behind what matters   

Complete the following steps to setup the example:

  1. If you have not already done so, import the classes in Zen_Authenticate.xml into the USER namespace. See Importing Code Using Terminal for instructions.
  2. Import ZAUTHENTICATE.mac, stored in ZAuth.xml, into the %SYS namespace. See Importing Code Using Terminal for instructions.
  3. Create a global mapping in the %SYS namespace which locates the MYUSERS global in the USER database. Read Mapping a Global for instructions.
  4. Enable delegated authentication for Caché from the Authentication Options / CSP Options page (click [Home] > [System Administration] > [Security] > [System Security] > [Authentication/CSP Session Options]) of the portal. Delegated authentication is disabled by default. Click Allow Delegated authentication then click Save.
  5. Set the authentication mechanism for the %Service_Console Service to Delegated. Click %Service_Console on the Services page (click [Home] > [System Administration] > [Security] > [Services]) of the portal. This displays the Edit Definition page for %Service_Console.
  6. Click Delegated. Verify that no other authentication mechanisms are selected. Click Save.
  7. Verify that Terminal now uses delegated authentication. Open Terminal. At the Username: prompt enter _SYSTEM. At the Password: prompt enter SYS. You get an Access Denied message:
    Username: _SYSTEM
    Access Denied

Send us comments on this page
Copyright © 1997-2020 InterSystems Corporation, Cambridge, MA