The single sign-on feature has many benefits.
Reduces password fatigue for users by having a single password to access many systems.
Access to enterprise applications is managed in a single location by well-defined security protocols and admins rather than in ad-hoc systems.
Elimination of credentialed access to all systems is assured when personnel termination takes place.
Password complexity and rotation policies are universally applied to all enterprise systems.
The single sign-on feature is configured in the Track Admin application. In order to perform the single sign-on setup, the user must log in to the Track Admin application with the TrkAdmin account. Accessing single sign-on feature will depend on each user’s assigned profile rules.
Since the user will be associated with a single domain, he/she must have common username between the Track database and the directory he/she is contained in. The user’s login username may be user’s email address or Track login ID. If the user will have access to both Track and Track Admin applications, then he/she will need to have two usernames. One username will be used to login to the Track application, and another one will be used to login to the Track Admin application. More than one directory may be utilized, but each user can only exist in one directory.
All permissions and role information remains in the Track database and is managed through the Track Admin application. Password management, including reset functionality, is managed by the directory service that the user is contained in.