Configuring the MyID web services for Integrated Windows Logon

2.3 Configuring the MyID web services for Integrated Windows Logon

If you set up the MyID server to use Integrated Windows Logon, some applications using the web services can use the cardholder's currently logged-on Windows identity to authenticate to MyID without having to enter passphrases or use a smart card.

See the Integrated Windows Logon section in the Administration Guide for details of setting up Integrated Windows Logon.

In addition to the procedures in the MyID documentation, you must also set up the authentication in IIS.

A PowerShell script called ConfigureWindowsAuthentication.ps1 has been provided; this is installed on the MyID web server in the Utilities folder.

The script takes the following optional parameters:

webSiteName – This is the name of the web site that is hosting the MyID web service. By default, this is:

Default Web Site
installationPath – This is the folder where MyID was installed. By default, this is:

C:\Program Files\Intercede\MyID

If you do not specify this parameter, the script reads the installation folder from the registry.

The script ensures that Anonymous Authentication is set for MyIDDataSource and MyIDProcessDriver, and that Windows Authentication is enabled for the WindowsAuth.asmx web service.

Note: If you upgrade your MyID web services, you may have to run this PowerShell script again.