# AM Access Management & SSO # Create identities (manually, CSV file, or authoritative source) {{@718}} # Add applications ## Description This wizard allows you to add a new Service Provider, that is, to configure an application that relies on an Identity Provider (IdP) to authenticate users and provide access to its services. To be able to add new applications (SP), you must install the Federation Addon. ## Step-by-step 1. If you have not previously installed the Federation Addon, the first time you select the *Add application* option, Soffid will require to **install the Federation Addon**. [![image.png](https://bookstack.soffid.com/uploads/images/gallery/2025-02/scaled-1680-/aJAQxBVokVmm6ZZX-image.png)](https://bookstack.soffid.com/uploads/images/gallery/2025-02/aJAQxBVokVmm6ZZX-image.png) When you click the OK button, Soffid will browse to the Soffid Download Area where you can find the Federation Addon. To install Federation Addon you can follow the steps [How to install Federation in Soffid?](https://bookstack.soffid.com/books/federation-guide/page/how-to-install-federation-in-soffid) 2. Once you select the *Add applicatio*n option, Soffid will display the wizard to register the Identity Provider, if it does not exist previously. [![image-1706615738719.png](https://bookstack.soffid.com/uploads/images/gallery/2024-01/scaled-1680-/image-1706615738719.png)](https://bookstack.soffid.com/uploads/images/gallery/2024-01/image-1706615738719.png) 3. You must select the application you want to add. [![image-1678779815350.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1678779815350.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1678779815350.png) 3.1. Soffid app: 3.1.1. The Finish step will be displayed. [![image-1678779871340.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1678779871340.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1678779871340.png) 3.1.1. If you click the Finish button, Soffid will display the Service Provider page. [![image-1677671303079.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677671303079.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677671303079.png) 3.2. AWS app: 3.2.1 Soffid will download the proper certificate. [![image-1677672235598.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677672235598.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677672235598.png) 3.2.2 Once, you download the certificate, Soffid will display the Configure application step. You must follow the indicated steps at this point and click the Next button. [![image-1677672319865.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677672319865.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677672319865.png) 3.2.2 Then, you must upload the metadata of your service provider and click the Finish button. [![image-1677672438056.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677672438056.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677672438056.png) 3.3. Google workplace app: 3.3.1 Soffid will download the proper certificate. [![image-1677672235598.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677672235598.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677672235598.png) 3.3.2 Once, you download the certificate, Soffid will display the Configure application step. You must follow the indicated steps at this point, fill in the Domain, and click the Next button. [![image-1677682975815.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677682975815.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677682975815.png) 3.3.3 Then, you must click the Finish button. [![image-1677683080657.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677683080657.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677683080657.png) 3.3.4 Finally, Soffid will browse to the Service Provider page where you can finish the Service provider configuration. [![image-1677683851230.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677683851230.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677683851230.png) 3.4. Microsoft 365 app: 3.4.1. When you select this option, Soffid will display the Configure application step. You must follow the indicated steps at this point, and click the Next button. [![image-1677683934770.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677683934770.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677683934770.png) 3.4.2 Then, you must click the Finish button. [![image-1677683080657.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677683080657.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677683080657.png) 3.4.3 Finally, Soffid will browse to the Service Provider page where you can finish the Service provider configuration. [![image-1677684047850.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677684047850.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677684047850.png) 3.5. OpenID app: 3.5.1. When you select this option, Soffid will display the Configure application step. You must configure your Service Provider, and click the Next button. [![image-1677684651700.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677684651700.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677684651700.png) 3.5.2. Then Soffid will return you the Client id and Client secret [![image-1677684676985.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677684676985.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677684676985.png) 3.5.3 Then, you must click the Finish button. [![image-1677683080657.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677683080657.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677683080657.png) 3.5.4 Finally, Soffid will browse to the Service Provider page where you can finish the Service provider configuration. [![image-1677684869231.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677684869231.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677684869231.png) 3.6. SAML 2.0 app: 3.6.1 Soffid will download the metadata XML file. [![image-1677686059860.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677686059860.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677686059860.png) 3.5.2 Once, you download the metadata file, Soffid will display the steps to follow. [![image-1677686120040.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677686120040.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677686120040.png) 3.5.3 Then, you have to upload the metadata file generated by the Service Provider [![image-1677686216222.png](https://bookstack.soffid.com/uploads/images/gallery/2023-03/scaled-1680-/image-1677686216222.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-03/image-1677686216222.png) # Create MFA policies ## Description This wizard will help you to configure multi-factor authentication in order to expand security. This process requires users to provide two or more forms of identification before being granted access to a system or application.

For more information, you can visit [the Two-factor authentication (2FA) book](https://bookstack.soffid.com/books/two-factor-authentication-2fa-VsJ).

## Step-by-step 1. If you have not previously installed the Federation Addon, the first time you select the *Create MFA policies* option, Soffid will require to **install the Federation and the OTP Addons**. [![image.png](https://bookstack.soffid.com/uploads/images/gallery/2025-02/scaled-1680-/9gfTecsUY1WjDknX-image.png)](https://bookstack.soffid.com/uploads/images/gallery/2025-02/9gfTecsUY1WjDknX-image.png) 2. Frist, you must select the authentication factor to use [![image-1677146953516.png](https://bookstack.soffid.com/uploads/images/gallery/2023-02/scaled-1680-/image-1677146953516.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-02/image-1677146953516.png) 3. Second, you must select the delivery method to use. If you select the second option, you have to select the users to whom the instructions will be sent. [![image-1677147051712.png](https://bookstack.soffid.com/uploads/images/gallery/2023-02/scaled-1680-/image-1677147051712.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-02/image-1677147051712.png) 4. Next, you must select which users will have the second authentication factor activated. [![image-1677147755823.png](https://bookstack.soffid.com/uploads/images/gallery/2023-02/scaled-1680-/image-1677147755823.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-02/image-1677147755823.png) 5. Finally, the changes will be applied and the process will be finished. [![image-1677147905326.png](https://bookstack.soffid.com/uploads/images/gallery/2023-02/scaled-1680-/image-1677147905326.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-02/image-1677147905326.png) # Create adaptive authentication rules ## Description Adaptive authentication rules are a set of security policies and mechanisms that adjust authentication requirements. These rules determine the strength of authentication required for each user, based on factors such as their location, device, past login behavior, and other risk indicators.

For more information, you can visit the [Condition for Adaptive authentication page](https://bookstack.soffid.com/books/federation/page/condition-for-adaptive-authentication).