Enabling Automatic Login¶
The Trust Center can now configure Trusted Zero Clients to automatically login to remote desktops. This enables the clients to operate in environments where they're being used similar to a kiosk. This feature is useful in environments such as secure factory floors (CNC operators), advertisement boards, flight status boards in airports, point-of-sale terminals, and barcode scanner terminals.
To enable Automatic Login, you must first configure the Trust Center and the Broker as described below.
Tip
The exact property names depend on the management tool you are using.
Step I: Set a Secret on Trust Center¶
To begin, set a secret on Trust Center for the Trusted Zero Client. The Trust Center encrypts the secret value with the Trusted Zero Client's public key, which is available in the client's birth certificate.
The secret represents the password required for automatic login, and is retrieved while authenticating login attempts from a Trusted Zero Client. It is also required while configuring the broker.
-
Open the Endpoint Management tool.
-
Set a secret using the
set-secret
command for the Trusted Zero Client. -
Set the password secret to the
secretName
configured in the step above. -
Do this for all the Trusted Zero Clients on which you want to enable automatic login.
Step II: Configure the Broker¶
Configure a broker for establishing PCoIP sessions. During configuration, provide the secret and the username that will be used for authentication. The secret and username will be verified for each connection attempt.
Info
The secret must be the same value as the Secret you set in Step I.
Configuration also involves enabling the automatic launch of desktops.To do this, set the autoLaunchIfOneDesktop
to "True".
Parameters¶
Value | Type | Description | Notes |
---|---|---|---|
savedLoginPasswordSecret |
String | This parameter fetches the password encrypted in the endpoint. | This value must match the secret that was set in Step I. For example, if you set the secret as mysecret , set this parameter to mysecret as well. The Secret will be used retrieved every time a connection attempt is made to authenticate the user. |
autoLaunchIfOneDesktop |
Boolean | This parameter allows automatic selection of a desktop, provided that only one desktop is available. | Set this value to True to enable Auto Login. |
savedLoginUsername |
String | This parameter represents the username to be used for login. | The username will be used retrieved every time a connection attempt is made to authenticate the user. |
Procedure¶
-
Open the Endpoint Management tool.
-
Set Auto Connect if Only One Connection to "True".
-
Set Auto Select Desktop if Only One Desktop to "True".
-
Set a username. The exact configuration for this depends on the management tool.
Step III: Enable Auto Login on Trust Center¶
Finally, enable automatic login by setting the autoConnectIfOneBroker
flag to "True". This flag allows automatic login, provided that only one broker is configured to connect to the host.
-
Open the Endpoint Management tool.
-
Set Auto Connect if One Broker to "True".
Notes¶
Automatic login works only if the following conditions are met:
-
Only one broker is configured to connect to the host.
-
The user credentials are current. If the username or the password have expired, the user is directed to the password change window.
-
Only one desktop is configured for use. If multiple desktops are available, the Desktop Selection window opens, with a list of desktops from which users can select the desktop to connect to.