Skip to main content

Getting started

Introduction

Soffid ESSO is a full Enterprise Single Sign on solution, with some distinguishing features:

  1. Keeps track of users sessions active on the network.

  2. Automatically reconfigure user preferences and desktop behaviour according to whether or not it is connected to the corporate network.

  3. And of course, as any other ESSO solution, automatically detects user identification prompts, injecting the needed credentials, pressing buttons and more.

As critical success factors the following design principles are governing Soffid ESSO product:

  1. It's fully integrated with Soffid IAM console.

  2. It's extremely easy to install and configure.

  3. It has good management and support tools.

  4. It's workload on managed workstations is minimal.

  5. It has been designed to minimize system vulnerabilities.

  6. It's open-source.

Overview

ESSO location.gif

Components 

Soffid ESSO is installed as a Windows or Linux Desktop application, and is composed of many components:

  • SayakaCP / SayakaGINA: Credential Provider to reset a user password using presaved challenges or an external email mailbox. It runs just before logging into the Windows domain, allowing the user to recover the password when it has been lost.
  • KojiKabuto: SSO session manager. It's running on the system tray, keeping user session alive. Is able to inject credential in any native application.
  • Mazinger: Command line version of SSO session manager.
  • Afrodita... : Includes a set of web browser addon for Firefox, Chrome and Internet Explorer, and is able to inject or even learn credentials to any web page
  • ShiroKabuto: Privileged account manager, runs as a service to manage local administrator accounts.
  • Boss: Tool to run privileged commands.
  • JetScrander: Tool to run native windows or linux commands.
  • Sewashi: Tool to handle terminal emulators SSO.