ESCWA Single Sign On

ESCWA communicates with processes which can have verification process. This means that ESCWA can pass credentials over the network on behalf of a user.

If the process network endpoints that ESCWA communicates with support TLS encryption, ESCWA will attempt to use the currently signed in user's credentials automatically to verify with the processes.

However, if those processes do not support TLS encryption, then ESCWA will prompt users with a login dialog before sending credentials over the network.

These login dialogs can be disabled with the Enable Single Sign On for Unsecured Resources option. Micro Focus recommends that you do not use this option as it can result in credentials being automatically sent over the network to endpoints without TLS encryption.

Configuration options

See TLS Encryption for more information on setting a process network endpoint to use TLS encryption.

To prevent automatic insecure sign on, use ESCWA to perform the following steps:

  1. Click

    This opens the Enterprise Server Administration Configuration dialog box.

  2. Expand Security Settings
  3. In the Single Sign On Behaviour list, select Only Secure and Loopback
  4. Click Apply.
Parent topic: Configuration Report