Documentation Center

Guidelines for Configuring and Using Single Sign-On User Authentication

When Legacy Content Delivery uses single sign-on to authenticate users, there are some best practices and guidelines to keep in mind when setting up the systems.

  • Ensure that you create at least one user who belongs to a group with Manage application permission, because once you have restarted the Legacy Content Delivery server, all logins are authenticated through the STS.
  • When Legacy Content Delivery uses single sign-on mode for authentication, the Manage Users page in the Manage Accounts interface is disabled.
  • In a content distribution model, always set the distribution server to internal mode (using Legacy Content Delivery to authenticate) and not single sign-on.
  • If you are publishing from a content management system, such as Content Manager, continue to use the admin user (or another user who belongs to a group with dba permissions) on the distribution server (which is in internal mode) in the output format.
  • When using single sign-on, Profile and Change Password are disabled.