Skip to main content

Authentication

  • 4 minutes to read

Note

The DevExpress Report and Dashboard Server login/password authentication method does not support/offer the following features:

  • Ability to prevent brute-force attacks (password guessing).
  • Password strength check (forcing users to create strong passwords and change them frequently).
  • Multi-Factor Authentication (2FA).

You can use the toolbar button to invoke the Authentication dialog.

Server and Windows Authentication

The Report and Dashboard Server provides Server and Windows authentication types. You can enable/disable these options in the Authentication dialog:

  • Server

      Specifies whether to enable Server authentication. A user account is activated once the specified email address is verified.
    
      After you add a new account, the Server sends an email to the specified address to request that the user creates a new password and activate the account. The user has **Pending** status until the account is activated.
    
  • Windows

      Specifies whether to enable Windows authentication. A user account becomes active right after its registration in the Report and Dashboard Server.
    
      Note that you should restart the website if you change this option's value.
    

OpenID Connect

Use the settings in this section to enable and configure the OpenID Connect authentication protocol.

For instance, you can perform the following steps to register your Report and Dashboard Server application in Azure Active Directory:

  1. Enter to the Azure portal and switch to the Azure Active Directory section.

    rs-open-id-azure-active-directory

  2. Switch to the App Registration section…

    rs-open-id-app-registration

    … and click New application registration.

    rs-open-id-app-registration-new

  3. Specify the application name, type and sign-on URL.

    rs-open-id-app-registration-settings

    You can copy the Report and Dashboard Server’s URL from the General Settings dialog.

  4. Copy the Application ID field’s content.

    rs-open-id-app-id

  5. Switch to the Server’s Authentication window, enable the OpenID Connect option and paste the copied value in the Application ID field.

  6. Go back to Azure Active Directory, click Properties and copy the Directory ID field’s content to the clipboard.

    rs-open-id-active-directory-properties

  7. Open the Server’s Authentication window, paste the copied value in the Authority field and add the “https://login.microsoftonline.com/“ prefix to it.

  8. You can use the Name option to display a custom name on the login screen.

  9. Open the General Settings window and enable the self sign-up option. This setting automatically creates an account when a user logs in for the first time.

  10. Restart the web application in IIS.

Log out from the Report and Dashboard Server to see the OpenID Connect option on the login screen.

rs-open-id-log-in-screen

WS-Federation

Use the settings in this section to enable and configure the WS-Federation authentication protocol.

For instance, do the following to register the Report and Dashboard Server application in Azure Active Directory:

  1. Sign in to the Azure portal and open the Azure Active Directory section.

    rs-open-id-azure-active-directory

  2. Switch to the App Registration section…

    rs-open-id-app-registration

    … and click New application registration.

    rs-open-id-app-registration-new

  3. Specify the application name, type and sign-on URL.

    rs-open-id-app-registration-settings

    You can copy the Report and Dashboard Server’s URL from the General Settings dialog.

  4. Return to the App Registration section and go to Endpoints.

    rs-ws-federation-app-endpoints

  5. Copy the Federation Metadata Document field’s content to the clipboard.

    rs-ws-federation-endpoints-metadata

  6. Switch back to the Server’s Authentication dialog, enable the WS-Federation option and paste the copied value in the Metadata field.

  7. Go to Azure Active Directory once again and locate the Report and Dashboard Server application in the App registrations section. Click Settings to access the application’s properties.

    rs-ws-federation-settings

  8. Copy the App ID URI field’s content to the clipboard.

    rs-ws-federation-settings-app-id-uri

  9. Open the Server’s Authentication dialog and paste the copied value in the App ID URI field.

  10. You can use the Name option to display a custom name on the login screen.

  11. Open the General Settings window and enable the self sign-up option. This setting automatically creates an account when a user logs in for the first time.

  12. Restart the web application in IIS.

Log out from the Report and Dashboard Server to see the WS-Federation option on the login screen.

rs-ws-federation-log-in-screen