SSO-H (Single Sign-On H)

This is a login service which can be used in the domain on the Active Directory environment network or in the machine. You can register/edit user data and specify administrator/general user settings in the following location:
Server authentication is performed in the external authentication server.
Local device authentication is performed in the memory of the machine from a Web browser.
SSO-H contains the following functions:
Enables the functions of the machine and MEAP applications, etc., to be used after being authenticated once.
Contains a user authentication system that uses the external server, and has two compatible user authentication systems, which can be used even when there is network trouble and only the machine can be authenticated. These two user authentication systems can be used together or alone.
SSO-H includes the following three user authentication systems:

Server Authentication

Active Directory Authentication
Active Directory Authentication is a user authentication method that connects with the domain controller on the network in an active directory environment and logs in to the machine at the same time as it authenticates with the network domain. In addition to the users of the domain that includes the machine, users of up to 200 domains that have a direct two-way trust relationship with that domain can also be authenticated. The user selects the domain name of the login destination when logging in.

Local Device Authentication

A user authentication system which only uses the machine. Users to be authenticated are registered/managed using a database inside the machine. [This device] is the login destination.

'Server Authentication + Local Device Authentication'

A user authentication system which includes the functions of both Server Authentication and Local Device Authentication. This is useful for using Server Authentication to authenticate users registered/managed in the external server, and using Local Device Authentication to authenticate temporary users which cannot be added to the external server.
'Active Directory Authentication + Local Device Authentication'
Users belonging to Domain A (which includes the machine), and users belonging to Domain B (which is bi-directionally trusted by Domain A), can be authenticated, and users registered in the machine itself can be authenticated. The user selects the location to log in to (domain name or [This device]) when logging in.

IMPORTANT
You cannot use Server Authentication and Department ID Management at the same time.
NOTE
The three user authentication systems can be switched using a Web browser. (See "Setting the User Authentication System.")
The default setting is 'Server Authentication + Local Device Authentication.' To increase security, set the user authentication system to 'Server Authentication' or change the user name and password of the Local Device Authentication administrator immediately after you start using SSO-H.
051R-0RC