Automatic enrolment

The Enable Automatic Enrollment option allows users to log in to SunSystems using their Windows log in ID, without having to create their user ID in User Manager.

If you check the Enable Automatic Enrolment check box when Operator Code Generation is not switched on, when you apply the change you are prompted to set up the operator code generation details in the User Creation Settings form.

The prerequisites for automatic enrolment to work are as follows:

  • You must use Active Directory facilities to define the groups you need in SunSystems as Windows domain groups.
  • Operator Code Generation must be switched on in User Creation Settings.
  • There must be at least one group-to-group mapping defined in User Creation Settings.

When these prerequisites are configured correctly, and a new user launches SunSystems, assuming their Windows login is a member of a mapped group, their user ID will be automatically created in SunSystems Security so that the application can continue loading without the need to enter an additional user name and password. If their ID is not a member of a mapped Windows domain group, the user is not created and they are prompted to enter a SunSystems user and password.

Similarly, if the user already exists in SunSystems Security but a change in Windows domain group assignment is detected when they log in, the user is either changed to the new SunSystems operator group, or denied access, depending on the new Windows domain group detected.

Note: If a user is deleted from Active Directory, you should manually delete the corresponding user in User Manager.