Types of logon authentication

After installation, the BMC Defender Server uses built-in authentication over the TLS connection to provide a secure channel for transmitting credentials. The built-in authentication provides user login tracking, auto logouts based on inactivity, and user lockout features.

Related topic

Logging-in-to-the-BMC-Defender-Server-web-interface-for-the-first-time

An administrator can change the type of authentication on the System > Logins > Security tab to permit other types of authentication, in particular, web screen authentication, and authentication using Active Directory. The administrator, as a first step in further securing the server, might want to enable Security Enhanced Functions on the System > Logins > Security screen, including specifying a logon domain, and whether to use Active Directory authentication at the site.

Important

To configure Active Directory authentication (that is to allow you to log on using their standard enterprise username and password) the BMC Defender Server must be part of the domain, and the user's name must be first configured on the System > Logins > Users screen.

Where to go from here

To use Active Directory Group Mapping (ADGM) for logon authentication, see Authentication-by-using-Active-Directory-Group-Mapping.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*