Signing In
- Enterprise IT
- Shilpa K (Deactivated)
- Enterprise IT
Prerequisites
SummitAI Suite can be accessed using Microsoft Edge version 40.15063.674.0 or above. The End User pages are supported in
Microsoft Edge version 40.15063.674.0 or above.
Note
Microsoft IE versions 7, 8, 9 and 11 are End-of-Life (EOL) and are no longer supported from 31st March, 2021. For more information, see Microsoft IE 11 EOL Notification.
Mozilla Firefox version 30 or above.
Note
While uploading the license information for SummitAI application using Mozilla Firefox version 42.0, an error message, “Incorrect License File!”, is displayed. This is a known issue reported by SummitAI QA team. This issue is fixed in the later versions of the Mozilla Firefox browser.
- Chrome version 30 or above
- Safari version 5.1.7
When viewing the Application, it is best to view at 1366 x 768 screen resolution. The System Administrator provides the user name and password. The login credentials are configured based on the number of licenses and the opted SummitAI IT Management Suite package.
To Sign in:
- Type in the SummitAI URL in the address bar of the browser.
- The SIGN IN page is displayed.
Figure: SIGN IN page Type in your user name and password.
Note:
Ensure that you type in the correct User Name and password as provided by your System Administrator. If you type in an incorrect user name or password, the application displays an error message.
- Click SIGN IN.
Select the Remember me check box for the browser to remember the user name and password.
Note:
When users try to log into the SummitAI Web Application account using multiple devices, two different browsers, or two different tabs (including incognito mode), a DUPLICATE LOGIN pop-up window with a message "Your last logged in session is still active. Click CONTINUE to log out of the previous session and to continue with this device” is displayed. If the user clicks CONTINUE, the previous session becomes inactive, and if any actions are performed on this inactive session, an error message is displayed.
- If GDPR is enabled, you are redirected to the GDPR CONSENT FORM. Accepting this consent by clicking the ACCEPT button is considered that you are agreeing to display your personal data to the Analysts and Administrators of the SummitAI application.
Figure: GDPR CONSENT FORM
The following pop-up window with a confirmation message is displayed, when you click ACCEPT button.
Figure: GDPR CONSENT FORM - ACCEPT pop-up window
If you click OK on the GDPR Consent Form - ACCEPT pop-up window, you are redirected to the home page of the SummitAI application. If you click Cancel, the control remains in the GDPR CONSENT FORM screen. - If you click DECLINE on the GDPR CONSENT FORM, your personal data will be wiped out from the SummitAI database records. The following pop-up window with a confirmation message is displayed, when you click DECLINE.
Figure: GDPR Consent Form - DECLINE pop-up window
If you click OK, on the GDPR Consent Form - DECLINE pop-window, you will not be able to use the SummitAI application anymore. The next time you try to use the Application, you will receive the GDPR Consent Form pop-up again. Click ACCEPT to allow displaying of your personal data and continue to use the Application. If the user tries to log in to the SummitAI application after declining the GDPR CONSENT FORM, the pop-up window given below is displayed.
Figure: GDPR Consent Form Declined - Accept Now?
If you click OK on the GDPR Consent Form Declined - Accept Now? pop-up window, you will be redirected to the GDPR CONSENT FORM. If you click Cancel, you will be logged out of the SummitAI application.Note
If GDPR is not enabled, you will be redirected to the SummitAI home page, when you click SIGN IN on the SIGN IN page.
Windows Authentication
You can also login into the application using the Windows authentication with direct Active Directory (AD) authentication and Active Directory Federation Services (ADFS) based authentication.
Figure: Windows Authentication
Multi-Factor Authentication Using Authenticator App
Enhancing security and protecting data is a key objective of Summit. To be able to negate security breaches and enhance secured authentication, a new option Authenticator App is introduced in Domain configuration.
Note: This configuration is only applicable for SummitAI application login page.
It provides more enhanced security and flexibility to the user whenever accessing the SummitAI application. You need to install on mobile a third-party authenticator app (such as Google Authenticator or Microsoft Authenticator) to generate login codes that help and confirm the user when to log in.
Using third-party authenticator app, user needs to scan the QR code or enter the code manually to register the device appearing on the SummitAI application’s login page.
Figure: Authentication QR Code
Upon connection the authenticator app generates time-based OTPs for authentication for user to login the application.
A validation message ‘Invalid verification code. You have XX more attempts(s) left’ appears on entering an invalid authenticator code. The number of failed attempts is configured in Domain configuration page.
Business Benefit: Reduce the risk of unauthorized access to the applications.
Multi-Factor Authentication Workflow
Prerequisites
- Select the Authenticator App as Authentication Mode from Domain Configuration.
- You must download the third-party authenticator app, such as Google Authenticator or Microsoft Authenticator on the mobile device.
Procedure
You must have valid login credentials to log in the SummitAI application.
- Enter the SummitAI application URL in the browser.
The SummitAI login screen appears.
Figure: SummitAI Log in Page - Enter the Username and Password.
- Click SIGN IN.
The two-factor authenticator app screen with QR code appears, when logging-in for the first time.
Figure: Two-factor authenticator QR code - Scan the QR code or enter the code manually in the third-party authenticator app.
The device gets registered. - Enter the verification code in the textbox and click VERIFY.
Upon successful authentication, the user gets redirected to the landing page.
Note: The user must enter the generated OTP from authenticator app every time when logging to the SummitAI application going forward.
Figure: Log in page with authentication app configuration
Configuring reCAPTCHA
You can configure an image-based reCAPTCHA feature to provide an additional layer of protection to access SummitAI application.
SummitAI has introduced a new image-based reCAPTCHA feature to provide an additional layer of protection to access SummitAI application. This feature is used to distinguish between humans and bots (robots). It is easy for humans to solve, but hard for bots and other malicious software to figure out. The reCAPTCHA uses recognizable graphic elements, such as pictures of City Roads, Birds or Animals, Vehicles, or Scenes that require end-users to recognize and select images matching the puzzle.
Note: The reCAPTCHA is a configurable feature and is not enabled, by default.
Advantages of using reCAPTCHA:
The advantages of using reCAPTCHA are:
- Ability to differentiate between humans and computers.
- Better and enhanced Security and minimizes Spams.
- Blocks automated usage of services.
- Ensures online activity is safe.
- Protects against Distributed Denial of Service (DDoS) attack.
Enabling reCAPTCHA
To enable reCAPTCHA, an admin must configure the following keys in Web.Config:
- greCaptchaSiteKey
- greCaptchaSecretKey
- greCaptchaSiteVerifyUrl
- greCaptchaJsAppUrl
- greCaptchaEnabled
Note: To configure SMCP hosted instances, reach out to Support team for assistance.
Prerequisite:
User Persona: Admin
Verify reCAPTCHA
When an admin configures all the required parameters to enable reCAPTCHA in SummitAI application. The login page appears with the reCAPTCHA verification checkbox to make sure you are human and not a robot.
To verify reCAPTCHA, perform the following steps:
- Log in to SummitAI application.
The SummitAI log in page displayed.
Figure: Log in Page - Select the checkbox corresponding to the reCAPTCHA.
A puzzle screen displayed with instructions.
Figure: On-screen puzzle - Select the images from the on-screen puzzle and click VERIFY.
A green checkmark is displayed.
Figure: reCAPTCHA verified
The green checkmark indicates that reCAPTCHA verification was successful, and a user could log in the SummitAI application.
Limitations of reCAPTCHA
The limitations of reCAPTCHA are:
- End-user system equipped with Internet to use reCAPTCHA.
To use reCAPTCHA, internet connection is required on end-user system. Else, reCAPTCHA API do not render. - The reCAPTCHA expiry interval
The verified reCAPTCHA expires in two minutes. On expired, end-user must re-verify reCAPTCHA.
- Domain or Package name validation
reCAPTCHA key is tied to a set of individual domains or package names. To use reCAPTCHA, an admin needs to sign-up for an API key pair for their site. This key pair consists of a site key and secret key.
Note: The reCAPTCHA is a free up to one million assessments per month. The pricing details are available at https://cloud.google.com/recaptcha-enterprise/pricing
The reCAPTCHA Status Messages
In this section, you can view the reCAPTCHA validation messages.
Status Message | Description |
---|---|
Verify you're not a robot. | Displays if the user clicks SIGN IN before performing reCAPTCHA verification. |
Verification expired. Check the checkbox again. | Displays if a user did not login after completing reCAPTCHA verification. |
References
- To log out, see Logging Out.
- If you forgot the password to log in to the SUMMIT application, see Forgot Password.
For more information about Licensing, see SummitAI Service Management Licensing.
Confluence Cloud Migration Alert: Please refer to known issues you may encounter in Confluence Cloud: https://eitdocs.atlassian.net/wiki/x/wDGwAQ