Use the following tags in each provider section to set whether that provider should be trusted or not.
<trusted>false</trusted>
Between the <trusted></trusted>
tags, leave the sample value of false
, or, if the specified provider is a trusted LDAP or Active Directory provider, replace the value with true
.
If the entire <trusted></trusted>
section including the tags is deleted, the default value of true
is used. Do not delete only the values of the tags; delete the tags and the values if
you want to use the default value.
If the trust setting is true
, a password is not present nor is it required in the token
generated upon user authentication. If the trust setting is false
, a password is part of
the token.
If you use Hybrid Analysis, you must use untrusted directories. If you are using trusted directories, Analytic Services will not allow access to databases that have Hybrid Analysis enabled. The presence of trusted directories does not affect the behavior of Analytic Services databases that do not contain Hybrid Analysis segments.
Trust, when set to TRUE, means that the user credentials found in a token received by Analytic Services will not be validated against the external authentication repository. This quickens the authentication process.
When trust is set to TRUE in a single sign-on scenario, these actions occur:
When trust is set to FALSE in a single sign-on scenario, additional steps are taken (steps 4-6 are unique to untrusted providers):
©2004 Hyperion Solutions Corporation. All Rights Reserved. http://www.hyperion.com |