Search Results

Definition Here is an explanation about how to configure the ESSO profile by using Soffid as Identity Provider. Please note that the profile parameters will be automatically updated on the PCs. Screen overview Standard attributes Class: class name (...

Introduction Soffid ESSO is a full Enterprise Single Sign on solution. Here you can find the details about the ESSO +3.5.0-enterprise installation. Supported platforms Soffid ESSO supports Windows XP or later workstations. Windows Interactive installatio...

Introduction Adaptive authentication is designed to improve the security of online accounts by adding an additional layer of protection against unauthorized access. When the authentication is being defined, Soffid allows you to add some adaptive authenticati...

Description Sync server is the engine responsible for connecting Soffid with data sources or managed systems. Soffid allows you to configure different synchronization servers. These synchronization servers are installed and configurated using command line to...

Title Necessary authorization to use pam service. Affected Product Code Base Soffid Console - 3.6.31 Descripition Recently the Soffid IAM team detected and corrected a low vulnerability that had been detected in the product's Console. This vulnerability r...

Description Soffid console provides an option that allows you to customize policies to assign or revoke roles automatically to specific users. To assign or revoke roles, the users must comply with the defined requirements. That option allows you to Preview c...

Definition Password domain Is a logical way of grouping managed systems that are sharing the same password for each account. If the administrator chooses to have the same password for every system, only one password domain should exist. If the administrator ...

Installation Prerequisites To install Soffid LDAP, you must install Docker. Despite Docker desktop can be used for testing purposes, Docker container runtime usage is recommended. Installation To start Soffid LDAP, execute: docker volume create ldapconf ...

Description The host screen lets the administrator manage a static IP address assigned to any host. Dynamic IP addresses are automatically managed by Soffid ESSO. Screen overview Related objects Network Operating systems Custom attributes Basics ...

Then, the third step will be to launch the network discovery process. That is the process in charge to scan the network, getting the hosts information, and connecting to the hosts as well. Step-by-step 1. The discovery network task can be executed manually...

Description An identity provider (abbreviated IdP or IDP) is a system entity that creates, maintains, and manages identity information for principals and also provides authentication services to relying applications within a federation or distributed networ...

Description The user is the core object of the system. In Soffid, a user means an identity (usually a person). Every user can have a number of accounts spread on different information systems. In traditional system management, one can assign roles and permis...

Description Schedule jobs display all the asynchronous tasks generated for the workflows engine. When a job is finished, it will disappear from that list. Standard attributes ID: job identifier. Name: job name. Process: process identifier and descriptio...

Soffid Architecture Soffid system is composed of up to five different components: IAM console  Sync server Repository PAM Jump server (optional) LDAP Directory server (optional) Enterprise SSO (optional) IAM Console Is the portal used by admin...

The purpose of this tutorial is to show how to initialize a MariaDB database required for Soffid IAM installation on Kubernetes. MySQL/MariaDB To initialize MariaDB on Kubernetes first of all you must create a Persistent Volume. Storage in the cluster will b...

Once the database replica is setup, it's important to guarantee transactianality rules. To achive it, one database instance must be acting as the master and other as the slave. Using corosync and pacemaker, you can configure a floating IP address that will ma...

Introduction The TLS protection of Soffid IAM Console is applied through the configuration of the Apache TomEE embedded in the installation. This solution is running under java technology therefore we need a jks file (Java Key Store) or a PKCS#12 file with t...

When making any manual changes to the Sync server configuration files, it will be necessary to copy these changes to the Kubernetes secrets. Command example:  java -cp "/opt/soffid/iam-sync/bin/bootstrap.jar" com.soffid.iam.sync.bootstrap.KubernetesSaver ...

Steps to configure Soffid Authenticator To obtain SSO and MFA for any web or legacy application, you need to configure your Soffid Authenticator App. 1. First of all, you need to login into your Soffid Console and browse My certificates and FIDO tokens page....

Steps to use Soffid Authenticator 1. First of all, open the web or legacy application in your browser. 2. Second, click the login option.  3. Then, Soffid Identity Provider will display the page to authenticate. 4. Type your user name and click the log...