With the release of OnBase 18.0.1.67 (any build of OnBase 18.0.1.67 and higher including any build of OnBase Foundation), changes were made to the way the software is implemented with respect to non-interactive autologon using domain credentials in order to authenticate users. These changes address the security vulnerability documented in this Security Bulletin (link).
The required configuration has been documented in the Web Server MRG, Application Server MRG and Legacy Authentication MRG. Further documentation has been added in a section of the Directory Service Authentication White Paper (previously Network Security) (link) titled "Special Considerations for Optimized Windows Authentication and Autologon".
