Browser configuration for single sign-on with Active Directory
Configuring Windows Internet Explorer for single sign-on
Before you set up single sign-on, you need to configure Windows Internet Explorer. The following instructions apply with Windows Internet Explorer 11.
Procedure
Open Internet Explorer.
On the Tools menu, click Internet Options.
In the Internet Options window, click the Security tab.
On the Security page, select Local intranet.
Click Sites.
In the Local intranet window, ensure that all the options are selected.
Click Advanced.
In the Add this website to the zone field, take either of these actions:
- To enable single sign-on with HTTP, type:
http://*.hcp-name.domain-name
For example:
http://*.hcp.example.com
- To enable single sign-on with HTTPS, type:
https://*.hcp-name.domain-name
For example:
https://*.hcp.example.com
- To enable single sign-on with HTTP, type:
Click Add.
Click Close.
In the Local intranet window, click OK.
In the Internet Options window, click the Advanced tab.
In the Settings list, under Security, select Enable Integrated Windows Authentication.
Click OK.
Close Internet Explorer.
Configuring Mozilla Firefox for single sign-on
Open Firefox.
In the address field in the Firefox window, enter:
about:config
In response to the warning message, click I’ll be careful, I promise!.
In the Preference Name list, double-click network.negotiate-auth.delegation-uris.
In the Enter string value window, type:
http://*.hcp-name.domain-name,https://*.hcp-name.domain-name
For example:http://*.hcp.example.com,https://*.hcp.example.com
Click OK.
In the Preference Name list, double-click network.negotiate-auth.trusted-uris.
In the Enter string value window, type:
http://*.hcp-name.domain-name,https://*.hcp-name.domain-name
Click OK.
Close Firefox.