Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >

KB-4644: How to enable IWA login from off-site locations

App Access Service ,  

12 April,16 at 11:22 AM

Applies to: Centrify Identity Service with Internet Explorer


IWA login is working for computers that are on the company network. Users who are off-site will need to use a VPN in order for Internet Explorer to detect the domain and use IWA for them as well.

Is there a way to enable IWA for off-site users without the need for a VPN?


Option 1:

Go to: Cloud Manager > Settings > Corporate IP Range

Enter the IP addresses of any external locations that users might be logging in from. IP addresses entered here will be considered part of the local intranet of the domain.

For more information, see:
- Configuring cloud service settings > Setting Corporate IP Ranges

Option 2:
Open Internet Options and add the Centrify login URL to the Local Intranet Security Zone (e.g. https://*
This will cause Internet Explorer to consider this site as internal. IWA logins can then invoked by using the following URL format:

(Where ABC123 is the Tenant ID or login suffix of the Centrify Cloud Service account)
For more information, see the "Adding a web site to the local intranet security zone" section in the online documentation:
Configuring Internet Explorer security zones > Adding a web site to the local intranet security zone

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.