Other configurations / notes

To enable the 4 hour cookie idle time change the configuration setting in the conf/config.pm:

$cookieauth::maxidletime = 240;

To disable the IP checking for Autologon apply the following parameter in conf/ntlm_conf.pm:

$nonetworkcheck = 1;

Notes:

Autologon works only if the HTTP connection is kept alive and is persistent during the authentication. If the Kronodoc installation is behind an HTTP proxy or SSL/TLS is used, make sure that the proxy/TLS terminator respects HTTP Keep-Alive properly. Otherwise, Autologon through the proxy will not work. The Kronodoc reverse proxy and other mod_ssl based TLS terminators might have the following incompatible configuration. This can be fixed by removing the nokeepalive and downgrade-1.0 parameters:

SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0

HTTP proxies have to pass the NTLM authentication protocol headers (Authorization) and respect HTTP Keep-Alive.

Autologon addon uses a Windows ActiveDirectory server for authenticating the user. The Windows server should have the NetBIOS over TCP/IP feature enabled.