Qmatic Orchestra supports Single Sign-On (SSO). SSO means in this context that when a user is authenticated in a Windows domain, that is has logged in to the domain with a Windows Active Directory (AD) account, Orchestra will not ask for user name and password. The user will be logged in to Orchestra automatically.

Some setup is required to enable SSO in Orchestra. A basic requirement is that there is a Microsoft Windows Active Directory server controlling a Windows domain. Both the host of the Orchestra server and the host(s) of the Orchestra client(s) need to be members of this domain.

The remaining setup can then be divided in two areas, the Orchestra server area and the Orchestra client (or Orchestra terminal user) area.

Useful information can be found in the official SPNEGO documentation. The documentation includes complete descriptions of parameters and a thorough example of how to set up SSO. At the time of writing, the documentation can be found at http://spnego.sourceforge.net/