Question about Windows Authentication

Gawain Lavers $organization over 7 years ago

While excited about having windows authentication for our users (we're a RAMP client), I do have a question. As I understand it, the security settings for any user allow either windows authentication or the old SQL Server based authentication, but not both. If Windows authentication is chosen, the old SQL password and account associated with the Tessitura user are completely deleted. So far so good for logging in to the client while in the windows domain.

But what about remote services that use Tessitura User username and password? For instance:

1) TNEW Admin Portal

2) Web Reports

3) Tessitura on the Go

4) The entire REST API...

Parents

Chris Szalaj $organization over 7 years ago

HI All,

Closing the loop on the TNEW question - When using Tessitura v15, both TNEW v6 and TNEW v7 would require users to have separate credentials used for TNEW's administration area if they have windows auth enabled for their Tessitura client credentials. The TNEW credentials would not have windows auth enabled.

We do have plans to update TNEW so that the same credentials can be used both in the admin portal and in Tessitura but are unsure about timing. It is likely that at v15 general release the solution will be to create a second set of credentials for use with the TNEW admin portal.

Thanks,

Chris Szalaj
Cancel
Vote Up +1 Vote Down

Sign in to reply

Cancel

Reply

Chris Szalaj $organization over 7 years ago

HI All,

Closing the loop on the TNEW question - When using Tessitura v15, both TNEW v6 and TNEW v7 would require users to have separate credentials used for TNEW's administration area if they have windows auth enabled for their Tessitura client credentials. The TNEW credentials would not have windows auth enabled.

We do have plans to update TNEW so that the same credentials can be used both in the admin portal and in Tessitura but are unsure about timing. It is likely that at v15 general release the solution will be to create a second set of credentials for use with the TNEW admin portal.

Thanks,

Chris Szalaj
Cancel
Vote Up +1 Vote Down

Sign in to reply

Cancel

Children

Gawain Lavers $organization over 7 years ago in reply to Chris Szalaj

Thanks for the clarification Chris.

As a RAMP client we would certainly wish to not just keep a unified login scheme (whatever it is) but also be able to extend our 2-factor authentication to those other remote logins. The PCI ramifications of things like Web Reports are of course not very significant, but with the TNEW admin there is obviously the peril of site hijacking. Are there any plans for this? And if TNEW admin is going to be effectively forked from our standard user credentials, and of course you have to support non-RAMP clients, we would happily suffer a second 2-factor system.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Cancel
Chris Szalaj $organization over 7 years ago in reply to Gawain Lavers

Hi Gawain, We have received a few requests for 2FA at TNEW admin login - we have it in our backlog, but no date or release yet planned for incorporating. We agree that it would be a good thing to have. Thanks for casting your vote, it helps -

Chris

CC Nara Zitner
Cancel
Vote Up +1 Vote Down

Sign in to reply

Cancel
Chris Szalaj $organization over 7 years ago in reply to Gawain Lavers

Gawain,

After some testing and some updates, I'm happy to let the community know that the issue with TNEW and windows auth have been resolved, and the TNEW admin functions properly with the windows auth feature enabled.

Thanks,

Chris
Cancel
Vote Up +1 Vote Down

Sign in to reply

Cancel
Gawain Lavers $organization over 7 years ago in reply to Chris Szalaj

Very cool!
Cancel
Vote Up 0 Vote Down

Sign in to reply

Cancel