Login - Metasys - LIT-12011942 - "" - Software Application - Metasys Open Data Server - 10.1

Metasys Open Data Server Help

Product
Building Automation Systems > Databases and Data Servers > Metasys Open Data Server
Document type
User Guide
Document number
LIT-12011942
Version
10.1
Revision date
2019-10-14
Note: We strongly advise that you do not access the Metasys Site Management Portal UI from a computer running a server-class operating system. By default, Windows Internet Explorer Enhanced Security Configuration is enabled on server-class operating systems and may block the Launcher download page from which you install the Launcher application for access to the Site Management Portal. Open the Site Management Portal UI from a computer that is not running a server-class OS.

The Metasys system supports Active Directory service and SSO. Metasys systems at Release 8.0 or later also support login for non-local users through Remote Authentication Dial-In User Service (RADIUS) servers. Therefore, when you launch the device that is configured as the Site Director of the extended Metasys network, four possible login scenarios occur:

  • If the Active Directory service or RADIUS server feature is disabled, the Metasys login screen appears. Enter your Metasys user name and password to gain access to the Metasys Site Management Portal (SMP) user interface.
  • If the Active Directory service and SSO features are enabled and you are logged in to your Windows desktop as an Active Directory service user with access to the Metasys system, the login screen does not appear and you automatically have access to the Metasys SMP user interface.
  • If the Active Directory service feature is enabled, but you are not logged in to your Windows desktop as an Active Directory service user with access to the Metasys system (or if the Active Directory service feature is enabled and SSO is disabled), the login screen appears. From that screen, you can access the Metasys system by entering your Metasys user name and password, and by selecting Metasys Local from the Login To drop-down menu; or by entering an Active Directory service user name and password, and by selecting the Active Directory service domain from the Login To drop-down menu.
  • If the RADIUS server feature is enabled, and a user selects RADIUS from the login screen and provides a non-local user name to the Metasys system for login, authorization is permitted only after the RADIUS server confirms authenticated access as specified in the Metasys security database. The RADIUS server is an authentication server defined by an administrator that exists outside of the Metasys system server.
Note: Messages reporting errors in RADIUS authentication are intentionally obscure to hinder possible intrusion from unauthorized users. Refer to the RADIUS Errors section of the Security Administrator System Technical Bulletin (LIT-1201528) for situations that may result in error messages. Descriptive Metasys system login failure messages are presented to the user only when RADIUS is disabled. When RADIUS is enabled, local and non-local authentication failure messages are identical and obfuscated.

The first time you log in to the site or engine and after you change the default password, the Metasys Terms and Conditions appear. Scroll through and read the entire Terms and Conditions text. If you agree with the terms, click Accept at the end of the text. If you do not agree, click Cancel to return to the login screen.

Note: If the Site Director is not available, you may want to directly connect to a network engine. In this scenario, Active Directory service login is not supported (both automatic login and user name/password login), and you must use a Metasys user name and password to connect. The security configuration for a network engine may be set up differently than in the Site Director.

For information about setting up the default login domain in the SMP UI for sites that use Active Directory accounts, refer to the Selecting a Default Domain for Active Directory Service – Users section in the Security Administrator System Technical Bulletin (LIT-1201528).