We need to access the intranet site called as "http://mysite/myapp".
And with using IE, every domain users can access the site without any prompt.
But, if the user try it with Chrome, the logon prompt shows at first. After entering credential just once, the prompt doesn't appear anymore for the access.
I'm just wondering any way to avoid the first-time logon prompt on Chrome.
And we don't want any chrome browser setting or shortcut for white listing per user. Because we can't handle many users Chrome one by one.
Any help will be appreciated.
Thanks.
In your Web session – General tab – enter your web browser URL. Then in the Login tab, click on the Authentication mode drop-down menu and select Form. Next, in the Credentials tab, enter your username and password. In the Html Control ID tab, you'll notice two options: Automatic and Discover.
Open Chrome Browser. In the User Managementwindow, click You. Sign in to a specific Chrome profile. The next time users open Chrome, the browser automatically opens. Step 4: Verify policies have been applied
To test that this worked, close and then re-open Chrome. With Chrome auto sign-in disabled, you can sign into Google sites like Gmail or Docs and, just like in older versions of Chrome, remained signed out of the browser. By default, the Google Chrome App for Android devices enables the auto sign-in feature.
Keep in mind that auto sign-in appears to be enabled by default in the current version of Chrome, so while you can turn it off, you’ll need to remember to do so when setting up a new browser to avoid unintentionally linking your account.
From the Admin console Home page, go to DevicesChrome. Click SettingsUsers & browsers. To apply the setting to all users and enrolled browsers, leave the top organizational unit selected. Otherwise, select a child organizational unit. Go to Sign-in settings. For Browser sign-in settings, select Force users to sign-in to use the browser. Click Save.
Check the details of the Integration Authentication in this Chromium documentation:
http://www.chromium.org/developers/design-documents/http-authentication
With Integrated Authentication, Chrome can authenticate the user to an Intranet server or proxy without prompting the user for a username or password. It does this by using cached credentials which are established when the user initially logs in to the machine that the Chrome browser is running on. Integrated Authentication is supported for Negotiate and NTLM challenges only.
Basically, execute Chrome with these switches to specify the auth schemes:
Chrome.exe --auth-server-whitelist="MYIISSERVER.DOMAIN.COM" --auth-negotiate-delegatewhitelist="MYIISSERVER.DOMAIN.COM" --auth-schemes="digest,ntlm,negotiate"
I tried running the command line but it wasn't working. I had to configure the same settings via the Windows Registry:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Google]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Google\Chrome]
"AuthSchemes"="basic,digest,ntlm,negotiate"
"AuthServerWhitelist"="*domain"
"AuthNegotiateDelegateWhitelist"="domain,server.domain.com"
Then I Killed Chrome (cmd line: TaskKill /im chrome.exe) and restarted chrome and tried again and voila. Everything worked as expected.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With