Note: Perspective 5.1 and later versions support SAML 2.0 for single sign-on. See What is SSO and How Do I Get It? for more information. In version 5.1 and later, Windows authentication is available for Perspective only. See Perspective 5.1 and Later: Enable Windows Authentication for more details.
Mixed mode authentication is not supported in version 3.3 or version 4.0. Your organization will need to choose either Perspective authentication or Windows authentication.
We recommend that clients do not use Windows Authentication until they have gone through their Perspective training and understand how to create users, roles and workgroups within Perspective, as this is integral to the operation of the system.
Perspective Server Settings
To use Windows Authentication with Active Directory, you must:
- Have the Security Role Service for Windows Authentication installed;
- Have Time Synchronization enabled in your environment; and
- Set up an Active Directory group for Perspective Users.
To enable windows authentication:
- Open your Perspective application server.
- Right-click the Perspective Service Manager on your desktop. Click run as administrator.
- Open the Database Connection.
- Click Windows Authentication.
- Click OK.
- Click Save.
- Open IIS.
- Expand the Default Web Site. Select your Perspective Services site.
- Double-click the Authentication icon.
- Ensure that:
- Windows Authentication is Enabled.
- Anonymous Authentication is Disabled.
- Return to the previous screen and click Edit Permissions on the right side menu.
- Open the Security tab, click Edit, and add appropriate Perspective groups with view, read, and execute permissions.
- Reset IIS.
Perspective User Setup
To enable windows authentication for Perspective users:
- Log into Perspective as a user with access to Administration.
- Click Users.
- Click a user, then click Edit.
- Click the Windows Logon ID field and enter the user's domain\UserID.
Warning: Do not enable the Change Password on Login feature.