HHS Enterprise Single Sign-On (ESSO)
Select a topic.
- ESSO applies a single authentication – the user’s Windows username and password – to store credentials for multiple applications. This process enables single sign-on access to all applicable HHS applications.
- Easy to use and simple to manage; it only requires a small application (AccessAgent) to be installed on the end users’ desktops. (Currently on all HHSC PCs and many that were previously DADS and DSHS)
- AccessAgent stores user’s credentials for profiled applications in a secure “wallet,” which is synchronized with a central IMS Server.
- Convenience. Users only need to remember one set of login details.
- Boost to Productivity. Reducing the amount of time employees spend trying to remember (and sometimes recover or reset) a laundry list of passwords, increases the time that employees can spend being productive.
- Accessibility. Because the applications are easier to access, they will be accessed more often and used more effectively.
- Less Help Desk Tickets. By giving users fewer passwords to remember, ESSO helps reduce the strain on the HHSC Consolidated Help Desk, bringing the number of tickets and their associated costs down.
ESSO should already be installed in all HHS computers.
To get started, open the ESSO AccessAgent icon in the icon tray.
Enter your Windows username and password.
When you sign in the first time, the AccessAgent will create a new wallet that contains your Windows (Active Directory) username and password.
After you login for the first time, the ESSO AccessAgent will automatically run whenever you log into Windows.
Now that you have an ESSO account and wallet, the AccessAgent will ask if you want to store the credentials for an application when it detects that you have signed onto an application that uses ESSO.
- Click Yes to store the user name and password in your Wallet.
- Click No if you do not want the user name and password to be stored yet. The next time you log on to the application, AccessAgent displays the same dialog box for confirmation.
- Click Never if you do not want your user name and password to be stored for this application. The next time you log on to the application, AccessAgent no longer displays the dialog box for confirmation.
If you clicked Yes, the next time you sign into the application, your username and password will already be filled in with the login credentials.
The AccessAgent can detect when you change your application password, and will confirm that you want it changed in the wallet as well.
Right-click on the AccessAgent icon in the notification area, then select Manage Wallet.
OR
Access your Wallet by using the Manage Wallet link in the AccessAgent navigation panel.
- Use the Credential Search field to find credential details in the Wallet Manager.
- Enter any of the following details:
- Authentication service name
- Username
- Type
- Password entry
- As you enter the credential in the field, entries that match the search item are highlighted on the list.
- From your Wallet, click an entry.
- Select Actions > Show password. You can also right-click on the entry and select Show password.
- Enter your Windows password. The password from the application that is selected in the Wallet is displayed.
- In the Wallet Manager, click the user name of an authentication service.
-
Delete the saved user ID and password for an application by either:
- Click Delete. Or
- Right-click on the entry and select Delete Credential.
- The entry is removed from the list of authentication services in your Wallet.
- CAPPS HCM
- Data Broker
- DCS Portal
- Eligibility Services Portal (OFS)
- EWMS
- HHS Emergency Notification and Alert System (Send Word Now)
- HHS Enterprise Portal
- OAG_Portal
- PALMS
- PPM
- SAVE
- TFC
- TIERS State Portal
- WORx
- WTPY