how to enable SSO for company intranet page
We have multiple intranet sites in our organization which works without prompting for credentials with IE. It uses the same credentials that I use to login to the computer. How do I enable this on firefox so that all my intranet sites work without prompting for the credentials.
Wszystkie odpowiedzi (5)
Just to make sure, I think that this is the feature that might be doing this in IE:
If the network uses a proxy to authenticate, there is a setting that you can check that will not ask for the login every time if it is stored: Options > Advanced > Network > Connection
This might really depend on how the login for the intranet sites work. However autofilling the login credentials might speed up the process.
You can also try:
- Tools -> Options -> Advanced -> Network: Connection -> Settings:
"Do not prompt for authentication if password is saved"
In case the servers use the older, simpler, NTLM-style authentication ("Windows Integrated Authentication"), users can add trusted host names to this preference using the about:config preferences editor:
network.automatic-ntlm-auth.trusted-uris
The list should be in the form should be:
host1,host2,host3
with no protocol or slashes.
Tried both the options mentioned above: 1. Tools -> Options -> Advanced -> Network: Connection -> Settings 2. network.automatic-ntlm-auth.trusted-uris
Still I am being prompted for credentials. All my passwords are saved.
Okay, so it sounds as though your server is not using the older method of authentication. In a different thread, a user mentioned a newer version of SSO. There is an additional, fourth step in that case:
(1) In a new tab, type or paste about:config in the address bar and press Enter. Click the button promising to be careful.
(2) In the search box above the list, type or paste auth and pause while the list is filtered
(3) Double-click the network.automatic-ntlm-auth.trusted-uris preference and add the relevant server host name (if there already is another host name, type a comma first before the new host name). Do not include http:// or https:// before the host name.
(4) Double-click the network.negotiate-auth.trusted-uris preference and add the relevant server host name (if there already is another host name, type a comma first before the new host name). Do not include http:// or https:// before the host name. Then add the same host name to the network.negotiate-auth.delegation-uris preference.
Any improvement?