Applies to: Centrify Identity Service with Internet Explorer
Question:IWA login is working for computers that are on the company network. Users who are off-site will need to use a VPN in order for Internet Explorer to detect the domain and use IWA for them as well.
Is there a way to enable IWA for off-site users without the need for a VPN?
Answer:Option 1:Go to: Cloud Manager > Settings > Corporate IP Range
Enter the IP addresses of any external locations that users might be logging in from. IP addresses entered here will be considered part of the local intranet of the domain.
For more information, see:
-
Configuring cloud service settings > Setting Corporate IP RangesOption 2:
Open Internet Options and add the Centrify login URL to the Local Intranet Security Zone (e.g. https://*.centrify.com).
This will cause Internet Explorer to consider this site as internal. IWA logins can then invoked by using the following URL format:
- https://cloud.centrify.com/my?customerid=ABC123
(Where ABC123 is the Tenant ID or login suffix of the Centrify Cloud Service account)
For more information, see the "Adding a web site to the local intranet security zone" section in the online documentation:
-
Configuring Internet Explorer security zones > Adding a web site to the local intranet security zone