This function allows you to configure and deploy third-party login configuration to Workspace resources managed by Space Center.
From the navigation pane, select System Settings > Third-Party Login Configuration.
Click Edit on top of the resource list.
Edit related parameters, and click OK.
SMS Template: Configure an SMS template based on which the system generates SMS messages to send verification codes to users. The SMS template must start with a signature enclosed by square brackets ([]) and it must contain a verification code prefixed with <VERIFYCODE>. The signature can contain letters, digits, Chinese characters, underscores (_), and blank spaces, and it cannot begin with a blank space.
Resend In: Set the interval for the system to send a new verification code. The default is 60 seconds. The default is 60 seconds.
Verification Code Validity Period: Set the validity period of verification codes. The system can send a new verification code after the old one expires. The default is 120 seconds.
Apply To: Select the users to which SMS authentication is applied:
All Links: Enable SMS authentication for all users.
Gateway Login: Enable SMS authentication for users who log in through a gateway..
Direct Connection: Enable SMS authentication for directly connected users.
Auth User Type: Select an authentication user type from the Local User, Domain User, and LDAP User options.
Balance Alert Threshold: Set the SMS balance alarm threshold. The default is 1000.
Send Alert At: Set the time when the system sends a low SMS balance message.
Administrator Phone Number: Enter the comma-separated phone numbers of the administrators to receive low SMS balance messages. The string cannot exceed 512 characters.
SMS Platform: Select an SMS platform that sends SMS messages. to send the SMS messages. Options include Jixintong SMS Platform, and Common SMS Platform. The Jixintong SMS platform is a third-party SMS platform and requires separate registration and deployment. For more information, access the official website of Jixintong.
If you select Jixintong SMS Platform configure the following parameters:
Login Name: Enter the username used to log in to the Jixintong SMS platform.
Login Password: Enter the password used to log in to the Jixintong SMS platform.
HTTP Proxy: Set whether to enable HTTP proxy. If you enable this option, you must configure the proxy address and proxy port. The proxy username and proxy password are optional.
If you select Common SMS Platform, configure the following parameters:
SMS Code: Select an encoding type. Options include UTF-8 and GBK.
Send Type: Select a message sending mode. Options include HTTP Request (POST) and Command.
Request URL: Enter the request URL for the common SMS platform to send messages. This parameter is required when the send type is HTTP Request (POST). When the system generates an alarm, the common SMS platform sends an HTTP request to this request URL to send SMS notifications. To obtain the exact address and address format, contact the SMS provider. Example: http://192.168.0.1:80/sendSms?userName=a&pwd=b&mobile={Mobile}&content={Content}, where {Mobile} represents the phone numbers to receive alarm messages and {Content} represents alarm message contents.
Private Network Protocol: Select a protocol for accessing the network where the management platform resides.
Private Network Host IP: Enter the IP address used by the third-party login server on the network where the management platform resides.
Private Network Port: Enter the port number used by the third-party login server on the network where the management platform resides.
Public Network Protocol: Select a protocol for accessing the Internet.
Public Network Host IP: Enter the IP address used by the third-party login server on the Internet.
Public Network Port: Enter the port number used by the third-party login server on the Internet.
CorpId: Specify the corporation ID registered at the enterprise WeChat background by WorkspaceDVM.
Secret: Enter an application secret.
AgentId: Enter an application agent ID.
Code Scanning Login: Select whether to enable code scanning login for enterprise WeChat. If you enable this option, a user can directly log in to the client by scanning a two-dimensional code with enterprise WeChat.
Dual Authentication: Select whether to enable dual authentication for enterprise WeChat. If you enable this option, a user can log in to the client only after performing the following tasks:
Enter a correct username and password.
Obtain the verification code from the enterprise WeChat.
Scan the enterprise WeChat two-dimensional code.
Code Scanning Dual Authentication: Select whether to enable code scanning dual authentication for enterprise WeChat. If you enable this option, a user can log in to the client only after performing the following tasks:
Enter a correct username and password.
Obtain the verification code from the enterprise WeChat.
Scan the enterprise WeChat two-dimensional code.
Random Code Dual Authentication: Select whether to enable random code dual authentication for enterprise WeChat. If you enable this option, a user can log in to the client only after entering a correct username and password, and the verification code from enterprise WeChat or the verification code from SMS.
QR Code Login Configuration
Code Scanning Login: Configure the AppId and AppSecret parameters after enabling code scanning login.
AppId: Enter an application ID.
AppSecret: Enter an application secret.
Internal Application Configuration
Dual Authentication: Select whether to enable dual authentication for DingTalk. If you enable this option, a user can log in to the Workspace client only after entering a correct username and password and the verification code from DingTalk. Configure the AgentId, AppSecret, AppKey, and CorpId parameters after enabling dual authentication.
AgentId: Enter the agent ID of an H5 micro application.
AppSecret: Enter the application secret of an H5 micro application.
AppKey: Enter the application key of an H5 micro application.
CorpId: Enter a corporation ID for WorkspaceDVM in the DingTalk console.
Code Scanning Login: Select whether to enable code scanning login for DingTalk. If you enable this option, a user can directly log in to the Workspace client by scanning a two-dimensional code with DingTalk.
Code Scanning Dual Authentication: Select whether to enable code scanning dual authentication for DingTalk. If you select Enabled, a user can log in to the Workspace client only after performing the following tasks:
Enter a correct username and password.
Obtain the verification code from the DingTalk.
Scan the DingTalk two-dimensional code.
Random Code Dual Authentication: Select whether to enable random code dual authentication for DingTalk. If you enable this option, a user can log in to the Workspace client only after entering a correct username and password, and the verification code from DingTalk or the verification code from SMS.
TemplateId: Enter an authentication message template ID.
AppId: Enter an application ID.
AppKey: Enter an application key.
This function allows you to distribute third-party login configuration to Workspace resources.
From the navigation pane, select System Settings > Third-Party Login Configuration.
The Overview page displays all Workspace resources managed by Space Center.
Distribute third-party login configuration to multiple Workspace resources in bulk:
Select the target Workspace resources, click Distribute.
On the dialog box that opens, click OK.
Distribute third-party login configuration to a single Workspace resource:
Click Distribute in the Actions column for the target Workspace resource.
On the dialog box that opens, click OK.
After the configuration is distributed, the Status column changes to Distributed, and the Action column changes to Re-Distribute. If you edit the third-party login configuration for a second time, you can click Re-Distribute to distribute the configuration again.