Search Results

Connecting to the LDAP  The Soffid LDAP accepts the usual way to connect to the LDAP service using the distinguished name and password for the user. Additionally, one can use the uid attribute to login. Then for the user: dn: cn=user,ou=test,dc=soff...

The password authentication process is redesigned to allow users to connect to Soffid LDAP using their internally stored password, or a password trusted by Soffid. The first attempt is to check the password against the local userPassword attribute. If i...

The communication channel from Soffid LDAP to Soffid sync server is configured by the Soffid overlay. The overlay configuration object looks like this: ## Soffid overlaydn: olcOverlay=soffid,olcDatabase={1}mdb,cn=configolcOverlay: soffidobjectClass: olc...

Introduction We can establish a connection to the target system using the SSH remote access protocol. How to connect 1 You can establish the connection with the ssh gateway and then Soffid will ask your password and the target system parameters to connect: ...

Introduction Soffid allows you to deploy a new docker container with the RDP gateway. The configuration is similar to the sync server configuration. Prerequisites The RDP Service is only released as a docker service. 1. Install docker ( https://docs.docker...

Introduction Soffid allows you to deploy a new docker container with the RDP gateway. The configuration is similar to the sync server configuration. Prerequisites The RDP Service is only released as a docker service. 1. Install docker (https://docs.docker....

Installation Prerequisites To install Soffid LDAP, you must install Docker. Despite Docker desktop can be used for testing purposes, Docker container runtime usage is recommended. Steps to debug 1.- First of all, you have to add the DEBUG environment varia...

Description The Metadata functionality allows expanding the Soffid objects, their attributes, and their data types. Also, it allows expanding custom objects. By default, there is a list of built-in objects, but it is possible to create new custom objects and...

Description The custom objects are the objects created by the administrator to extend the Soffid underlying data model. This allows you to store additional information that is not natively supported by Soffid.  This option allows administrator users to provi...

Definition Soffid provides an easy to use mechanism to translate references or external codes into internal codes. For example, the HHRR application could be using a diferent coding scheme for business units. To deal with this data mismatch, users can extend...

Definition Soffid allows you to define rules to detect commands executed on a server. When a user launches a command defined on a rule, Soffid will detect it. To use those rules you need to define the PAM policies. For more information, you can visit the PAM...

Guide to install IAM Console using Docker.  There is a public docker image at docker hub: https://hub.docker.com/r/soffid/iam-console/ Prerequisites Docker 8GB RAM > 10GB disk space (50GB recomended) Supported database installed Video Tutorial In...

Description An account is the way an user is presented on a target system.  There can be user accounts as well as system-purpose accounts. An account belongs to a system and that account can have specific permissions assigned to it. An account must have defi...

Description A process is a series of actions, connected by transitions. An action could be either an automatic action or a manual task. Soffid console is concerned about task delegation and workflow management. Any user is able to create new processes or any...

Description Soffid agents are the tool that allows the connection between the Soffid console and the target systems. To establish the connection with target systems, Soffid provides a large number of connectors that will be able to set up into the Soffid cons...

How to access? For domain member hosts, ESSO will remove all existing local accounts except for those with a dependand service. So, in order to access with administrator privileges, user must use a domain account with local administrator privilege, or either ...

Definition Soffid allows you to customize the configuration of some attributes of the Console, Syncserver, connectors and add-ons. There are several types of parameters. Informative parameters, such as the versions of internal components of Soffid. Param...

Description Information systems are the systems that Soffid will protect granting and revoking roles. Each role and entry point is bound to an information system. The information system can be created hierarchically. These information systems are managed in ...

Description Soffid allows you to create roles to specify permissions that can be assigned to a user, a group, or an account. These permissions determine what operations are allowed on a resource. You can use roles to delegate access to users, applications, or...

Definition Privileged Access Management (PAM) policies are a set of guidelines and controls that dictate how privileged access is granted, managed, and audited within an organization. Soffid allows you to define policies, those policies can be made up of sev...