Thycotic Community - Secret Server - windows auto-login feature? - Messages

Message from Adam D

Fri, 16 Apr 2010 13:14:31 GMT

This would be an AD user.

Message from Jonathan

Fri, 16 Apr 2010 12:47:48 GMT

Adam,

Are these typically local user accounts on each Windows workstation or are they AD accounts?

I will add a feature request. (We have done similar features in the past for our Password Reset Server product which reaches out and changes registry values across the network to install a GINA hook)

Best.

Message from Adam D

Thu, 15 Apr 2010 16:29:46 GMT

Yes, that is correct. We dont have end-users though. All of our machines are self service kiosks.

Ideally I was hoping there was a way to mask the registry key where the auto-login password usually is stored.

Message from Jonathan

Wed, 14 Apr 2010 16:07:37 GMT

Adam,

To make sure I understand the feature ... Secret Server would change the user's password and automatically change the registry key on their machine for their auto-login?

Do your users frequently use auto-login?

Best.

Message from Adam D

Tue, 13 Apr 2010 16:48:56 GMT

Thank you, this is very nice. This is not exactly what I meant though.

I was referring to how you can set computers to auto-login on startup.

Message from Jonathan

Tue, 13 Apr 2010 15:07:36 GMT

Adam,

You can use the Launcher within Secret Server.
See the User Guide (section "Launcher") http://updates.thycotic.net/link.ashx?SecretServerUserGuide (page 21).

The Launcher works with Remote Desktop (for Windows machines) and PuTTY (for UNIX/Linux machines). Clicking the launcher icon on a Secret automatically logs you into that machine using either Remote Desktop or PuTTY.

Coming in our next release will be support for launching into websites directly from the Secret (for web passwords).

Best.

Message from Adam D

Mon, 12 Apr 2010 15:44:24 GMT

Hi,
I was wondering if Secret Server will ever consider adding the feature to set a user to auto-login into a computer?

This is very useful because right now the only way I know how to do this is to expose the password of the auto-login user in the registry, which is not good for compliance reasons.