The Multi-User Desktop is launched from a generic Windows session. It displays an interface which hides the desktop when no user is working on the computer.
Supported authentication methods are the ones defined in the security profile of the access point. They can be: biometrics, smart card, contactless badge, login & password and emergency access.
When he authenticates, the user quickly accesses his applicative environment as there is no Windows session opening. The SSO engine of the user allows him to access his applications according to his rights.
When he leaves the workstation, his applicative environment is hidden by the Multi-User Desktop.
When the user comes back to the same computer, he retrieves his environment. There is however one restriction for preserving the local applications: applications must handle several instances running in the same Windows session. Otherwise, the application will be closed each time a user logs on.
It is also possible to automatically start a remote connection (Microsoft TSE, VMWare Horizon, Citrix Receiver) to a server as soon as the user connects to the MUD, instead of starting the E-SSO engine.
Roaming session enables users to be mobile within a service by retrieving their work session form one workstation to another without a systematic authentication. During the grace period and for the set of workstations, the user authenticates only once on one of the workstations.
Workstations are shared among several users. They are equipped with a contact microprocessor card reader or with a mixed card and RFID reader. Access to the workstation is secured by the corporate card containing certificates.