Please enable JavaScript to view this site.

Nx Meta User Manual

Navigation: Nx Meta User Manual > Server Settings

Session and Digest Authentication

 Scroll Prev Top Next More

Key Concepts

Nx Meta offers session and digest authentication methods.

HTTP Bearer Session authentication is the default option due to its improved security over HTTP Digest authentication.

Digest authentication remains an available, deprecated option, that may not longer work as intended and is scheduled to removed in a future update.

Changing digest authentication settings may require a password change for existing accounts.

Password requirements are enforced by the input dialog.

The login (user-name) must be lowercase when using digest authentication.

A warning banner will appear in the Edit User dialog when users are permitted to use digest authentication.

A warning banner will appear in the Site Administration > Security tab stating how many users have digest authentication enable and a resource for more information..

Digest authentication can be disabled for multiple users by selecting "Force Secure Authentication" found below the user list (Main Menu > User Management > Users).

The User Management dialog includes a filter for users having digest authentication enabled.

Digest authentication can be enabled when importing LDAP users.

Digest Authentication Availability

Standard Security Level

In version 6.1, Digest Authentication is still available if your system is set to the Standard security level for local user accounts.

In version 6.1, Digest Authentication is removed if your system is set to the Standard security level for cloud user accounts.

Local User accounts can still be created with Digest Authentication, both in upgraded systems and in new installations.

If you create a digest user in version 6.1, a warning is displayed that Digest Authentication will be disabled in a future update.

High Security Level

In version 6.1, Digest Authentication is disabled if your system is set to the Standard security level for local user accounts.

In version 6.1, Digest Authentication is removed if your system is set to the Standard security level for cloud user accounts.

Existing users configured with Digest Authentication will no longer be able to log in or authenticate API requests.

See "Secure Connections" for more information on setting the Site Security level.

To Enable HTTP Digest Authentication for a User

1.Launch the Desktop Client.

2.Open Main Menu > User Management.

a.Click Add User if adding a new user with Digest Authentication.

or

b.Click on an existing (LDAP or local) user to Edit their (digest authentication) settings.

3.Within the user properties dialog, tick the box to Allow (insecure) digest authentication.

4.Existing users may require a password change to enable digest authentication.

5.A notification will show when Digest Authentication is enabled for a user.

6.Apply the changes.