Portal Integration
This section describes all properties relevant for the integration of security.manager with Esri Portal for ArcGIS and ArcGIS Online.
- security.login.portal.url
-
URL of a Portal instance or an ArcGIS Online Organization. If specified, security.manager provides a service interface to convert a Portal token into a security.manager domain cookie. The URL is used by security.manager to verify the Portal token and determine the according user username. For further information about the Portal integration option, see Single sign-on with Portal for ArcGIS and ArcGIS Online.
Examples:
https://portal.example.com/arcgis
,https://myorg.arcgis.com
Do not use https://www.arcgis.com as a URL. This could probably allow access to security.manager by users of other organizations. Since 4.8.0
- security.login.portal.users.domain
-
When security.manager is operating in "hybrid" mode, this parameters specifies the domain configuration used to match Portal user accounts to security.manager user accounts. For an explanation of the "domain" concept, see Hybrid user management.
Examples:
ad.example.com
,db.example.net
Since 4.8.0
- security.login.portal.users.blocked
-
Comma-separated list of security.manager usernames not accepted when matching Portal user accounts to security.manager user accounts. This is a security measurement to prevent from unprivileged Portal users getting administrative access to security.manager.
Example:
smadmin,Administrator
Since 4.8.0