All SSP customers are users of your domain (or several domains trusting each other)

To take advantage of trust relationship between domains and pass-through authentication:

  1. Choose Windows Authentication for the Self Service Portal. For details, see Installation Guide: Installing and Configuring the Self Service Portal.

    and, to avoid creating multiple SSP customer accounts manually, when all of your domain users can use the Self Service Portal, enable LDAP Authentication for the Self Service Portal:

  1. Add a Domain Credentials record for each domain. For details, see Setting up LDAP Authentication for SSP.

  2. Enable LDAP Authentication for the Self Service Portal. For details, see Setting up LDAP Authentication for SSP.

  3. Disable the Active Directory Synchronization or disable creating SSP accounts during the synchronization process. For details, see Configuring Active Directory Synchronization Jobs.

  4. Create manually SSP accounts with manager access levels, if required.

INFO: If only a part of your domain users can use the Self Service Portal, the advantage of LDAP Authentication for the Self Service Portal does not apply. In this case you must create SSP accounts manually or using the Active Directory Synchronization. For details, see Configuring Active Directory Synchronization Jobs.

How sign-in works: Pass-through authentication is applied. SSP customers do not need to log in because the system recognized them from their current Windows session.