Security: Single Sign On

Purpose

Capture Analytics provides two basic methods for authenticating users:

• Single sign on — Capture Analytics uses each user’s network login codes to determine if they are allowed access. Users with access who are already logged in to your network can run Capture Analytics without having to log in again.

If you have a Capture Analytics SaaS Subscription and you apply security using single sign on within Capture Analytics, users access the analytics portal using a Web URL and then log in using a user account provided by Deltek Cloud Operations to access Capture Analytics.

• Non-single sign on — When they run Capture Analytics, all users must enter a user ID and password to gain access.

Use the Prompt Users for Login and Password options under Single Sign On to select the approach you want to use.

Deltek strongly recommends that you implement single sign on user authentication when you are ready to make Capture Analytics generally available to your users. Deltek does not recommend or support making the analytics available without single sign on authentication. If you have a Capture Analytics SaaS Subscription and you decide to use security in Capture Analytics, you must implement single sign on authentication.

Costpoint Analytics Security

This setting is for Capture Analytics security only. If your firm also installs Costpoint Analytics, you set this option separately for Costpoint Analytics – Project and Costpoint Analytics – Employee using their configuration applications.

Preparation

These options are only available if you select Yes in Apply Security. For more on that option, see Security.

Also, regardless of the authentication method you select, you must set up all users in Capture Analytics. For complete information, see Security: Key Concepts and related topics.

Initial Configuration

To use single sign on authentication, select No in Prompt Users for Login and Password under Single Sign On.

To require all users to enter a user ID and password to gain access to Capture Analytics, select Yes in Prompt Users for Login and Password.

You may want to select Yes temporarily in Prompt Users for Login and Password while you test security settings. That enables you to log into Capture Analytics more quickly using various user ID and password combinations to confirm that they have the correct access. If you instead implement single sign on, you will have to log out of the network and log back on each time you want to test another user ID and password.

If you use non-single sign on initially and later change this option, you are required to enter a user ID and password when you do the data load that updates the data model with the security change. Because the switch to single sign on has not yet occurred, you must use the non-single sign on user ID and password one final time.

Ongoing Administration

Normally, you do not change this setting after the initial configuration. However, you can change it at any time.