The APPSSO is dependent on SecureLogin. In order to make the SSO work, the team must have skillset of SecureLogin
For vSphere Web Client you might need to configure it using App Definition Wizard from NSL. Here is the guide to create an Application Definition for a Web Application:
or if the App definition is not working, please write the script:
I know it's an old post but I wrote here to let you know that I have read your information above, since we discussed this issue somewhere else.
I am currently struggling with the final step of implemeting AppSSO for Vmware ESXi 6.7 host client (locally in the domain). So far PAM user can launch the rdp file from the pam console, my web application opens and PAM records the session, but SecureLogin does not enter the credentials automatically.
The wizard provided by SecureLogin is not solving the problem because it is not detecting the login fields, regardless I open the app in IE or chrome. I tried enabling scripts and add-ons in IE also but didn't work.
Is there a predefined script for this application or any script that can be easily tweaked ?
1- my AppSSO agent machine is Windows Server 2012 R2 and I have KB2919355 security update installed. 2- the ESXi login screen is an HTML5 web page and it has regular username and password fields and a login button and it looks like:
So far it worked for me without the 'SetRestPlat -method "PAM"', so it's not PAM who is inserting the credentials (from credential vault), it's SecureLogin (from credentials I saved in SecureLogin), so I have considered it as a solution since the credentials are inserted automatically while are hidden and inaccessible by the user.
Your above information were helpful, and it was not a certificate problem as i suspected, the trick was jumping from PAM documentation to SecureLogin documentation to figure out how it works.
Yes sure, the following script worked for that:
DebugPrint "Conducting Match on login form Log in - VMware ESXi - Internet Explorer"
Title "Log in - VMware ESXi - Internet Explorer"
DebugPrint "Window Title Log in - VMware ESXi - Internet Explorer Detected"
Note: $Username and $Password are credentials you saved in SecureLogin for this application (in the details tab).
In case this script didn't work, try to put a "Delay" in the beginning of the script, i.e, type the following as first line in the script:
Hope it helps and sorry for late answer.
Btw tdharris, so far, Application SSO to database and Application SSO to web application worked for me without creating any rule in the command control, so PAM user has to make a request and then be confirmed by the admin to have access to the application (as RDP for example), and after that, session is recorded and reports are issued properly so everything works fine.
But when I add a rule for the application, PAM user has access to the application (an RDP file automatically created in his Access Console) without requesting it, which made me confused about the purpose of adding a rule, since the documentation stated that rules must be created, while things worked for me without creating rules.
Am I misunderstanding something ?