Log on to an Operating System-secured application

When a user logs on to an InTouch application, a dialog box appears requiring the following:

• User name

• Password

• Domain or local computer name

The domain/user name combination is passed to the operating system to authenticate the user’s credentials. An attempt is made to log on with or without enabling the operating system cache. If the user cannot be logged on without the cache (due to a network outage, for example), but the user was previously authenticated with the cache enabled, then the user’s full name and access level is obtained from the local InTouch cache.

If all of the security checks are cleared successfully, the user is considered to be logged on to the InTouch HMI and the relevant data structures (for example, $Operator) are updated. Otherwise, an error message is shown.

If the operator has never logged on successfully before and the domain is unavailable, the logon attempt fails. The InTouch HMI logs a system event to the error log.

If the password is expired, an error message is shown. After the operator selects OK, the Change Expired Password dialog box appears, so that the operator can change the password and attempt to log on again with the new password.