Single sign-on (SSO) means that with a single authentication, users have access to all related computers and services they are authorized to. The user does not need to log in multiple times on the same workstation. If the user moves to another workstation, the authentication and local authorization are no longer valid. The SSO works together with the LDAP (Lightweight Directory Access Protocol).

In terms of working with Siveillance Control, this means that users can log in to a Microsoft Active Directory (MSAD) on their computer and start a Siveillance Control client without having to be authenticated again on the Siveillance Control runtime server.

The following figure shows the computers involved:

MSAD-ServerClientLDIFkeytabSiveillance ControlServer-

If SSO has not been configured, Siveillance Control can be operated by locally defined users. SSO is configured on the engineering server using LDAP. Following activation in runtime, SSO is currently only available for the runtime server.