Auto select the domain name in the login page

Auto select the domain name in the login page

Domains of a user can be auto filled during login. This can be achieved by searching for the domain names associated with the provided username in the login page.

Say, username 'vembu' exists in only one domain 'Zoho'. So, when we enter the username as 'vembu', the domain field will be auto selected as 'Zoho' in the domain drop down. If the username 'vembu' exists in two domains say 'Zoho' and 'SDP' then we will filter all other domains and show these two domains in the drop down.

To achieve this, we need to enable domain filtering option. This is used to filter the domains associated with the entered username in the login page. To enable this,
                 
Go to Admin >> Security Settings >> Advanced >> Check both " Enable Domain dropdown during login" and " Domain Filtering during login" option >> Save the settings.
     
If not found under Admin tab, then Go to ESM Directory >> Security Settings >> Advanced >> Check both "Enable Domain dropdown during login" and "Domain Filtering during login" option >> Save the settings.

If you are using Active Directory Authentication and need to filter the AD domains, then in addition to the above step you should disable Dynamic user addition. Dynamic user addition is to create a new user in SDP if he is available in your AD. User will be created under the selected domain upon successful authentication. So, when dynamic user addition is enabled, all the public domains will be listed in the login page because any user can be added under any domain. To filter domain names based on the username, this has to be disabled. To disable this,

Go to Admin >> Self-Service Portal Settings >> select "No" for " Allow dynamic user addition when the user is not imported in the application?" >> Save the settings.

If not found under Admin tab, then Go to ESM Directory >> Application Settings >> select "No" for "Allow dynamic user addition when the user is not imported in the application?" >> Save the settings.

Logout and check for the auto select the domain name behavior now.

Note : Auto selecting the domain names based on the username is vulnerable as anyone can give username as input and get the associated domain names for that username. This was considered as a vulnerability in some environments and thus we have options to disable domain filtering & disable domain drop down during login.


                    New to ADSelfService Plus?

                      • Related Articles

                      • SAML Auto Login with ADFS (in Intranet)

                        Steps to enable Auto-logon: Step 1: In the AD FS server, under Authentication Methods, make sure that Windows Authentication is selected. Step 2: Run the below powershell query to check if "Chrome" is present in the supported WIA agents: ...
                      • Customize Login page and add JS scripts

                        Customize Login Page Start by going to Advanced Portal Settings (or Application Settings under ESM Directory) and click on "Customize Now" under Login Page Customizaion Start editing the HTML content to suit your needs by adding style/css content, ...
                      • Query to Pull out Login Hours

                        Purpose        To generate the Total Login Hours per Technician.  Query : select ai as "Account ID", tn as "Technician Name ( First Name )", lh as "Login hours", LONGTODATE(llt) as "Last Login Time", ln as "Login Name", domain as "Domain", email as ...
                      • Login frequency

                        This report is used to find the Technician and Requester Login frequency. SELECT AaaUser.FIRST_NAME "Technician", MAX(AaaLogin.NAME) "LoginName", MAX(AaaContactInfo.EMAILID) "Email", MAX(AaaAccSession.USER_HOST) "IP Address", ...
                      • Customized Login form

                        The following steps can performed to customise the default login page with a different image background. 1. Save a new page as Custom.HTML under [ManageEngine\ServiceDesk\Custom\Login]. This will return a totally blank login page with only the login ...