The process of launching the terminal on a Linux Client computer with secondary user authentication enabled is performed as follows:
1. The user runs the terminal.
2. The Client requests the user to enter their secondary user credentials.
3. The user enters the credentials of an Ekran System user that has the Access to Endpoint via Secondary Auth. permission for Clients.
4. These credentials are sent to the Application Server and the Application Server returns a response on whether access to the terminal is permitted. If the user has the required permission for the Client computer and the credentials they entered are correct, then the user is allowed to log in to the terminal. Otherwise, a message is displayed to the user informing them that access is denied.
5. As soon as the user logs in to the terminal, the Client starts recording their activity, and the secondary user name is displayed in the Client Sessions list in the User name column in brackets: <Linux user> (<secondary authentication user>).