After working with support for a few days we verified that SSO does not work on a fail over Cluster. Resulting in accounts being locked out or needing the local prtg accounts to gain access. The SSO functionality works great on our core servers that are in standalone and on the primary servers. When it goes to failover unfortunately the callback URI are made blank resulting in no SSO access. If we can be given an option to either not having those callbacks deleted or combining the callback of the primary and failover would be very helpful. The other function I would like to see is when setting those callbacks having the option of picking the auto generated URI and a custom URL. That way we can setup a custom link that is easy to remember for our users instead of having to remember the FQDN of the servers allowing any login to accept the SSO.
SSO feature/function
Votes:
0
2 Replies
Votes:
0
Hi Michael,
Thank you very much for your contribution.
The described behavior is by design, hence it is expected that SSO on a failover cluster is not working as you expecting it to be. Please refer to the Notes of the manual:
"SSO users cannot log on to a failover node in a cluster."
Best,
Sebastian
Created on Mar 25, 2022 12:32:08 PM by
Disclaimer: The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.
Add comment