Skip to main content

Identity & Service providers

Description

Soffid Identity Federation addon helps administrators to manage an Identity Federation. With Soffid you can manage the whole federation security configuration, increasing the security while reducing the federation management costs. Soffid can also act as a Service Provider, serving identities to any SAML capable application server.

The main supported standard is SAML. SAML allows to completely detach the identification process from web applications,  known as Service Providers. With SAML, identification is performed by specialized servers known as Identity Providers.  Additionaly, some other, less secure, but some times convenient protocols like OAuth (Open Authorization) and OpenID-Connect protocols are supported. Elder protocols like Openid (do not confuse with OpenID-Connect) are deprecated and no  longer supported.

You can visit the Introduction page to find more information about the federation members.

Screen overview

&&TODO&& Poner un vide de una configuración complete?????????????????????????

 

Federation members

1. Entity Group

2. Identity Provider

3. Service Provider

4. Virtual Identity Provider

Entity Group

{{@389}}

Identity Provider

{{@390}}

Service Provider

{{@392}}

Standard attributes

The standard attributes depends on the Service provider type.  Currently there are three types:

SAML

{{@428}}

    SAML API client

    {{@429}}

    OpenID Connect

    {{@413#bkmrk-implicit-flow-the-se}}

    {{@430}}

    Virtual Identity Provider

    {{@391}}

    Actions

    Federation Tree view

    Add group

    Allows you to create a new Entity group. You can choose that option by clicking on the "Add group" button, then Soffid will display a new window with the fields to fullfil.

    To add a new Entity group it will be mandatory to fill in the required fields and save or apply changes..

    Add identity provider

    Allows you to add a new Identity Provider. You must click the "Add identity provider" button, under the proper Entity Group and "Identity Provider" label, then Soffid will display a new window with the data to fulfill for new Identity Provider.

    To add a new Identity provider it will be mandatory to fill in the required fields and save or apply changes..

    Add virtual identity provider

    Allows you to add a Virtual Identity Provider. You must click the "Add virtual identity provider" button, under the proper Identity Provider, which has to be a Soffid IdP, then Soffid will display a new window with the data to fulfill for the new Virtual identity provider.

    To add a new Virtual identity provider it will be mandatory to fill in the required fields and save or apply changes..

    Entity goup 

    List

    Add new

    You can add a new Entity groups by clicking on the add button (+). Then Soffid will display a new window and you need to fill in the required fields and save or apply changes.

    Delete

    Allows you to remove one or more Entity group by selecting one or more records and next clicking the button with the subtraction symbol (-).

    To perform that action, Soffid will ask you for confirmation, you could confirm or cancel the operation.
    Detail
    Save

     

    Allows you to save the data of a new Entity group or to update the data of a specific Entity group.

    To save the data it will be mandatory to fill in the required fields

    Apply changes

    Allows you to save the data of a new Entity group or to update the data of a specific Entity group and quit.

    To save the data it will be mandatory to fill in the required fields.

    Delete

    Allows you to delete the Entity group. To delete a host you can click on the hamburger icon and then click the delete button (trash icon).

    Soffid will ask you for confirmation to perform that action, you could confirm or cancel the operation.

    Undo

    Allows you to quit without applying any changes made.

    Identity Provider

    List

    Add new

    You can add a new Identity provider by clicking on the add button (+). Then Soffid will display a new window and you need to fill in the required fields and save or apply changes.

    Delete

    Allows you to remove one or more Identity providers by selecting one or more records and next clicking the button with the subtraction symbol (-).

    To perform that action, Soffid will ask you for confirmation, you could confirm or cancel the operation.
    Detail
    Save

     

    Allows you to save the data of a new Identity provider or to update the data of a specific Identity provider.

    To save the data it will be mandatory to fill in the required fields

    Apply changes

    Allows you to save the data of a new Identity provider or to update the data of a specific Identity provider and quit.

    To save the data it will be mandatory to fill in the required fields.

    Delete

    Allows you to delete the Identity provider. To delete a host you can click on the hamburger icon and then click the delete button (trash icon).

    Soffid will ask you for confirmation to perform that action, you could confirm or cancel the operation.

    Undo

    Allows you to quit without applying any changes made.

    Service Provider

    List

    Add new

    You can add a new Service provider by clicking on the add button (+). Then Soffid will display a new window and you need to fill in the required fields and save or apply changes.

    Delete

    Allows you to remove one or more Service providers by selecting one or more records and next clicking the button with the subtraction symbol (-).

    To perform that action, Soffid will ask you for confirmation, you could confirm or cancel the operation.
    Detail
    Save

     

    Allows you to save the data of a new Service provider or to update the data of a specific Service provider.

    To save the data it will be mandatory to fill in the required fields

    Apply changes

    Allows you to save the data of a new Identity provider or to update the data of a specific Service provider and quit.

    To save the data it will be mandatory to fill in the required fields.

    Delete

    Allows you to delete the Service provider. To delete a host you can click on the hamburger icon and then click the delete button (trash icon).

    Soffid will ask you for confirmation to perform that action, you could confirm or cancel the operation.

    Undo

    Allows you to quit without applying any changes made.

    Virtyal Identity Provider

    List

    Add new

    You can add a new Virtual identity provider by clicking on the add button (+). Then Soffid will display a new window and you need to fill in the required fields and save or apply changes.

    Delete

    Allows you to remove one or more Virtual identity providers by selecting one or more records and next clicking the button with the subtraction symbol (-).

    To perform that action, Soffid will ask you for confirmation, you could confirm or cancel the operation.
    Detail
    Save

     

    Allows you to save the data of a new Virtual identity provider or to update the data of a specific Virtual identity provider.

    To save the data it will be mandatory to fill in the required fields

    Apply changes

    Allows you to save the data of a new Virtual identity provider or to update the data of a specific Virtual identity provider and quit.

    To save the data it will be mandatory to fill in the required fields.

    Delete

    Allows you to delete the Virtual identity provider. To delete a host you can click on the hamburger icon and then click the delete button (trash icon).

    Soffid will ask you for confirmation to perform that action, you could confirm or cancel the operation.

    Undo

    Allows you to quit without applying any changes made.

     

    https://en.wikipedia.org/wiki/Federated_identity

    https://en.wikipedia.org/wiki/Identity_provider

    https://en.wikipedia.org/wiki/Service_provider

    Back to top