ContextQMD
Back to Devexpress

Authentication

reportserver-119489-administrative-panel-manage-server-settings-authentication.md

latest4.0 KB
Original Source

Authentication

  • Sep 05, 2023
  • 4 minutes to read

Note

The DevExpress Report and Dashboard Server login/password authentication method does not support/offer the following features:

  • Ability to prevent brute-force attacks (password guessing).
  • Password strength check (forcing users to create strong passwords and change them frequently).
  • Multi-Factor Authentication (2FA).

You can use the toolbar button to invoke the Authentication dialog.

Server and Windows Authentication

The Report and Dashboard Server provides Server and Windows authentication types. You can enable/disable these options in the Authentication dialog:

  • Server

  • Windows

OpenID Connect

Use the settings in this section to enable and configure the OpenID Connect authentication protocol.

For instance, you can perform the following steps to register your Report and Dashboard Server application in Azure Active Directory:

  1. Enter to the Azure portal and switch to the Azure Active Directory section.

  2. Switch to the App Registration section…

  3. Specify the application name, type and sign-on URL.

  4. Copy the Application ID field’s content.

  5. Switch to the Server’s Authentication window, enable the OpenID Connect option and paste the copied value in the Application ID field.

  6. Go back to Azure Active Directory , click Properties and copy the Directory ID field’s content to the clipboard.

  7. Open the Server’s Authentication window, paste the copied value in the Authority field and add the “ https://login.microsoftonline.com/ “ prefix to it.

  8. You can use the Name option to display a custom name on the login screen.

  9. Open the General Settings window and enable the self sign-up option. This setting automatically creates an account when a user logs in for the first time.

  10. Restart the web application in IIS.

Log out from the Report and Dashboard Server to see the OpenID Connect option on the login screen.

WS-Federation

Use the settings in this section to enable and configure the WS-Federation authentication protocol.

For instance, do the following to register the Report and Dashboard Server application in Azure Active Directory:

  1. Sign in to the Azure portal and open the Azure Active Directory section.

  2. Switch to the App Registration section…

  3. Specify the application name, type and sign-on URL.

  4. Return to the App Registration section and go to Endpoints.

  5. Copy the Federation Metadata Document field’s content to the clipboard.

  6. Switch back to the Server’s Authentication dialog, enable the WS-Federation option and paste the copied value in the Metadata field.

  7. Go to Azure Active Directory once again and locate the Report and Dashboard Server application in the App registrations section. Click Settings to access the application’s properties.

  8. Copy the App ID URI field’s content to the clipboard.

  9. Open the Server’s Authentication dialog and paste the copied value in the App ID URI field.

  10. You can use the Name option to display a custom name on the login screen.

  11. Open the General Settings window and enable the self sign-up option. This setting automatically creates an account when a user logs in for the first time.

  12. Restart the web application in IIS.

Log out from the Report and Dashboard Server to see the WS-Federation option on the login screen.