Global Security Settings
The global security settings include settings for SSL encryption, Windows impersonation, and URLs that Essentials requires to manage the user sign-in process. Configuration of the URLs is required as a security measure.
If the URLs are incorrectly configured, the user's browser will not be able to redirect back to the viewer after the user has signed in and the user's session will fail.
To configure the global security settings:
-
In
-
Configure the security settings:
-
Enforce SSL: When this checkbox is selected, communications between Essentials and viewers use SSL encryption (HTTPS).
Turning off SSL enforcement is not recommended.
-
Windows Impersonation: If you want requests to ArcGIS Server to be made as the user instead of as Essentials, select the checkbox. This ensures that ArcGIS Server knows the identity of the user that originated the request. For more information, see Windows Impersonation.
In order to use Windows impersonation, both ArcGIS Server and the Essentials site must be secured using Integrated Windows Authentication.
Most deployments do not require Windows impersonation. We recommend that you leave the Windows Impersonation setting disabled, unless you need it for some specific purpose.
-
Allowable Redirect URLs: After the user has signed in Essentials redirects the browser to a redirect URL, which returns the user to the viewer.
If your viewers are deployed on the same server as Essentials and the server uses the same host name internally and externally, you do not need to configure any redirect URLs—simply make sure the Allow All Redirects checkbox is selected.
If you have viewers deployed to other servers or the servers have different internal and external host names, add a redirect URL for each server that hosts viewers.
-
To add a redirect URL, type or paste the server's URL in the Allowable Redirect URLs box, and then click Add.
-
To remove a redirect URL, click the Remove icon
beside the URL.
-
-
-
Click Apply Details.