Bypassing Integrated Windows Authentication to access the IT Analytics console as an alternate portal user

book

Article ID: 211832

calendar_today

Updated On:

Products

IT Analytics

Issue/Introduction

In some environments, users are required to perform actions within the IT Analytics (ITA) console using an account that differs from the account with which they've logged-in to Windows. When using certain browsers, the ITA console automatically logs a user in under the credentials of their Windows session when Windows Authentication is selected at the login screen, preventing the user from supplying alternate credentials.

Cause

When Integrated Windows Authentication is enabled for browsers, users are not presented with a login prompt and can only login to ITA as the logged-on user of their active Windows session. Integrated Windows Authentication enables a client to pass Windows credentials via a browser's authorization header to a site for authentication. This feature is typically enabled for intranet sites and is controlled via Windows' Internet Options control panel.

The following browsers are controlled by this setting:

  • Microsoft Internet Explorer

  • Microsoft Edge

  • Google Chrome

Environment

Release : 2.9.x

Component : Console

Resolution

To login to the ITA console as a user other than the signed-in user of the active Windows session without modifying the settings in the Internet Options control panel or using an alternate browser (e.g., Firefox), follow this procedure:

  1. Locate the Chrome or Edge executable on your computer, typically located at %systemdrive%\Program Files (x86)\Google\Chrome\Application\Chrome.exe or %systemdrive%\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  2. Press and hold the Shift key while right-clicking on the executable and select Run as different user
  3. Enter the credentials of the admin account you wish to use
  4. Enter the hostname or URL for the ITA console in your environment
  5. Select Windows Authentication and click Login

Additional Information

Additional information on Integrated Windows Authentication can be found here:

https://docs.microsoft.com/en-us/aspnet/web-api/overview/security/integrated-windows-authentication