On a host with ESSO installed an icon with Soffid Logo will appear on Windows taskbar.
If user clicks on with the mouse right button it will be able to do some different actions.
In order to inject ESSO rules, Soffid ESSO must be enabled. That means, if user disables ESSO, user and password will be required to execute any application, but ESSO session is still open on server. User can enable ESSO without identifying again.
To update esso rules for the user account. ESSO will contact Soffid Synchronization server in order to get the Single Sign On rules for this account. Any granted permission or rule change will be applied immediately.
This option can be disabled on configuration tool (Administrator users can change configuration options). If this option is active, user can close and reopen ESSO session. In order to reopen it, the user must enter user code and password again (unless Kerberos login succeds). On closing session, any SSO rules will be unloaded, so the user should enter user and password on applications request.