Credential Sharing
By default, the application uses its own credential information. The credential sharing feature lets an application make use of the user's domain credentials or use the same credentials as other applications.
There are two credential sharing options:
-
Share with the domain only
-
Share with other applications in a shared credential store
NOTE: When an application shares credentials with another application, the Password Policy option becomes more complex and must be set from the credential store.
Sharing with a Domain
An application can share credentials with the domain, instead of using its own credential information.
To enable credential sharing with the domain:
- In the Imprivata Admin Console, go to Applications > Single sign-on application profiles and open the application profile.
- In the section Credentials, select This application shares credentials.
- Select with the domain only.
- Click Save.
Sharing with Other Applications in a Shared Credential Store
An applications can share credentials with one or more applications, instead of using its own credentials. When two or more APG-profiled applications must share credentials, you can create a credential store. Imprivata OneSign uses credential stores to manage these application credentials centrally. When users update their credentials for one application, Imprivata OneSign updates the credentials for all applications listed in the credentials store. Applications and Imprivata OneSign credential stores can also take advantage of the Imprivata OneSign Password Policy feature. Shared credential stores are described in Using Shared Credential Stores.
