Search Results

Title Necessary checks were not applied to some Java objects. Affected Product Code Base Soffid Console - 3.5.38 Descripition Recently the Soffid IAM team detected and corrected a vulnerability that had been detected in the product's Console. This vulnera...

Title Untrusted Java serialization in Soffid IAM console. Affected Product Code Base Soffid Console - 1.7.5 Descripition Untrusted Java serialization in Soffid IAM console before 1.7.5 allows remote attackers to achieve arbitrary remote code execution via...

Introduction Here we will try to explain some user cases about different types of process to know how that processes work. That processes will be a basic user cases, but you will be able to define process as much complex as your business needs. For more info...

Description Soffid provides a monitoring functionality to consult all the information of the different agents and the status of each one of them and the amount of tasks assigned. Consequently, it allows diagnosing possible incidents in a quick and easy way. ...

Note that Soffid supports different scripting languages, you can configure it in the Smart engine settings screen. Additionally, in the initial configuration of the container, we can configure the SOFFID_TRUSTED_SCRIPTS environment variable to allow the use...

Description The access log page allows querying all the information about the opened sessions.  Note that any session that was active during the specified date will be shown, even when it started before of finished after that date. Screen overview Cust...

What is Soffid Break glass? It refers to a mechanism that allows users to gain emergency access to critical systems or information under exceptional circumstances when normal access procedures are not viable.  Break glass is a crucial component of security a...

Installation Download Please download the Soffid Break glass add-on. You could download it at the following link http://www.soffid.com/download/enterprise/ if you have a Soffid user with authorization, or in the following http://download.soffid.com/download...

Definition Break glass is the mechanism that allows users to gain emergency access to critical systems or information under exceptional circumstances when normal access procedures are not viable.  For more information you can visit the  Break Glass book. Sc...

Intallation Execute the Store YAML version: '2' services: breakglass: image: eu.gcr.io/soffid-cloud/breakglass:1.0.3 environment: JAVA_KEYSTORE: /opt/soffid/tomee/certificados/breakglass.jks KEYSTORE_PASS: <YOUR_KEYSTORE_PASS> ...

If your system is working fine A window like this will be displayed: If your system is broken You could use Soffid break glass  tool: 1.  First of all, browse to your  Soffid break glass tool URL 2.  Soffid break glass tool offer you two options Br...

Configuration Once you have installed the Break glass addon and Break glass tool, you must configure this tool Steps Break-glass recovery configuration 1.  First of all, you need to configure the Break glass recovery. To do this, you need to browse to  Bre...

Installation Download Please download the Soffid Federation add-on. You could download it at the following link http://www.soffid.com/download/enterprise/ if you have a Soffid user with authorization, or in the following http://download.soffid.com/download/...

Definition Soffid includes Digital certificate functionality as a security enhancement. You could add new Digital certificates, internal or external. If you select the external certificate, you could add a valid certificate to Soffid; If you select the intern...

When you install soffid Sync server in kubernetes, a properties file is generated. If this file is not saved in a permanent storage, it could be lost during the Syns Server upgrade process. Here you are the steps to copy your Kube config to a data base table ...

Step-by-step To enable the kerberos authentication method, the identity provider must have a keytab file that enables it to authenticate users. The steps to get it are described below: 1. First of all, you need to create a net user. You can use the old-fashi...

Description A profile is a protocol or subset of protocols implemented by the Identity Provider. There are some accepted protocols, those allows a custom config dependent on the selected profile. The accepted protocols are the following: 1. OpenIDProfile 2...

Introduction Soffid ESSO is a full Enterprise Single Sign on solution. Here you can find the details about the ESSO from 3.3.3-enterprise to 3.4.3-enterprise  iversions nstallation. Supported platforms Soffid ESSO supports Windows XP or later workstations....

Introduction KojiKabuto.exe, the main Soffid ESSO component, picks settings and rules automatically from Soffid synchronization server at login. This configuration can be updated by running the command "KojiKabuto update". Once run, new rules will apply to al...

How to access? When you try to connecto to a Windows machine by using Soffid ESSO, you need to enter your user and password in the Windows login page.  If the user does not exists in this machine, depending on the attribute "Create local accounts when there ...