Hitachi

JP1 Version 13 JP1/IT Desktop Management 2 Configuration Guide

2.12.4 Procedure for changing authentication method

To use IDaaS linkage, the following describes how to change the authentication method.

Procedure for changing ITDM2 authenticatrion to IDaaS linkage authentication

  1. Follow the steps to build a configuration system using IDaaS linkage and configure it for the IdP you use.

    If you use the Keycloak, see 2.12.1 Procedure for building a configuration system using IDaaS linkage (with the Keycloak).

    If you use the Microsoft Entra ID, see 2.12.2 Procedure for building a configuration system using IDaaS linkage (with the Microsoft Entra ID).

  2. Add users registered in the IdP who use the operation window of the JP1/IT Desktop management 2, the Remote Install Manager, the Packager, and the Network Access Control commands on the screen User management, Manage user account in the Settings module of the JP1/IT Desktop Management 2.

    Important

    You must use same user IDs which are registered in the IdP and by the user account management in the JP1/IT Desktop Management 2.

    Important

    You need to specify the initial password when registering with the JP1/IT Desktop Management 2 's user account management. This password is not used when authenticating with the IdP, but if you switch from authentication with the IdP to ITDM2 authentication, you must log in using this initial password.

    Note

    If you want to use a user account that is already registered in JP1/IT Desktop Management 2, register the user with the same user ID in the IdP.

  3. Stop the services on the management server.

  4. Edit the configuration file (jdn_manager_config.conf).

    Set the following Key and Value in the configuration file:

    IDaaS_Auth=ON

    For details about the key IDaaS_Auth of the configuration file, see the description of the list of properties in the manual JP1/IT Desktop Management 2 Overview and System Design Guide.

  5. Edit the IDaaS linkage configuration file (jdn_idaas_auth.conf).

    Edit the settings according to the IdP you are using. For details, see 2.12.3 IDaaS linkage configuration file (jdn_idaas_auth.conf).

  6. Start the services on the management server.

When using the JP1/IT Desktop Management 2 operation screen, you can log in by specifying the password of the user registered in the IdP on the IdP authentication screen by connecting to the login screen URL of the operation screen with a Web browser. If you enable multi-factor authentication in your IdP's settings, you will also need to operate multi-factor authentication.

Procedure for changing JP1 authenticatrion to IDaaS linkage authentication

  1. Change the user management settings, switch from JP1 authentication to ITDM2 authentication.

    For details about changing the user management settings, see 3.10 Changing the user management settings.

  2. Change from ITDM2 authentication to IDaaS linkage authentication.

    For details of this procedure, see Procedure for changing ITDM2 authenticatrion to IDaaS linkage authentication in this section.

Procedure for changing IDaaS linkage authentication to ITDM2 authenticatrion

  1. Stop the services on the management server.

  2. Edit the configuration file (jdn_manager_config.conf).

    Set the following Key and Value in the configuration file:

    IDaaS_Auth=OFF

    For details about the key IDaaS_Auth of the configuration file, see the description of the list of properties in the manual JP1/IT Desktop Management 2 Overview and System Design Guide.

  3. Start the services on the management server.

  4. Notify the user of the initial password set when adding the user account to JP1/IT Desktop Management 2.

When you connect to the URL of the JP1/IT Desktop Management 2 operation screen, you can log in using the user ID of the IdP and the initial password provided in step 4 on the login screen.

Procedure for changing IDaaS linkage authentication to JP1 authenticatrion

  1. Change from IDaaS linkage authentication to ITDM2 authentication.

    For details of this procedure, see Procedure for changing IDaaS linkage authentication to ITDM2 authenticatrion in this section.

  2. Change the user management settings, switch from ITDM2 authentication to JP1 authentication.

    For details about changing the user management settings, see 3.10 Changing the user management settings.

To Page Top

Copyright (C) 2023, 2025, Hitachi, Ltd.

Copyright (C) 2023, 2025, Hitachi Solutions, Ltd.