Advanced Search
Search Results
517 total results found
BPM Editor
Description BPM is a technology that allows modeling, implementing, and executing processes automatically to enhance efficiency and productivity in support of enterprise goals. Soffid includes a BMP (Business Process Management) in its Smart Engine to provid...
Password vault
Description Soffid provides a protected storage, to save and manage accounts for multiple applications, that is the Password vault. Here you can save the accounts and passwords to access to critical systems and to your applications as well. Password vault all...
PAM Jump Server Upgrade
Upgrade To upgrade PAM you will need to run two scripts, one for the store and the other for the launcher. Upgrade store To upgrade the storage container you can download and execute the following script: upgrade-store.sh ~/Downloads$ bash ./upgrade-store...
Business process definition
Description Soffid includes a BMP (Business Process Management) in its Smart Engine to provide useful workflows integrated with the processes and the policies of the Soffid core. In order to add extra functionality to the console, you can upload different b...
Bulk actions
Description Allows massive operations to be performed on the selected records. With that operation, updates can be made to any of the object parameters. You can access this option through the hamburger icon from a few of the components of the table type, lik...
Segregation of Duties (SoD)
Description The segregation of duties (SoD) is a fundamental element of internal controls, defined to prevent error and fraud. Segregation of duties ensure that at least two individuals are responsible for the separate parts of any task. For each user, the r...
CVE-2024-39669
Title Necessary checks were not applied to some Java objects. Affected Product Code Base Soffid Console - 3.5.38 Descripition Recently the Soffid IAM team detected and corrected a vulnerability that had been detected in the product's Console. This vulnera...
CVE-2017-9363
Title Untrusted Java serialization in Soffid IAM console. Affected Product Code Base Soffid Console - 1.7.5 Descripition Untrusted Java serialization in Soffid IAM console before 1.7.5 allows remote attackers to achieve arbitrary remote code execution via...
Self service portal examples
Introduction Here we will try to explain some user cases about different types of process to know how that processes work. That processes will be a basic user cases, but you will be able to define process as much complex as your business needs. For more info...
Users
Description The user is the core object of the system. In Soffid, a user means an identity (usually a person). Every user can have a number of accounts spread on different information systems. In traditional system management, one can assign roles and permis...
Sync server monitoring
Description Soffid provides a monitoring functionality to consult all the information of the different agents and the status of each one of them and the amount of tasks assigned. Consequently, it allows diagnosing possible incidents in a quick and easy way. ...
Sample scripts
Note that Soffid supports different scripting languages, you can configure it in the Smart engine settings screen. Additionally, in the initial configuration of the container, we can configure the SOFFID_TRUSTED_SCRIPTS environment variable to allow the use...
Password policies
Definition Password domain Is a logical way of grouping managed systems that are sharing the same password for each account. If the administrator chooses to have the same password for every system, only one password domain should exist. If the administrator ...
Configure TLS for IAM Console
Introduction The TLS protection of Soffid IAM Console is applied through the configuration of the Apache TomEE embedded in the installation. This solution is running under java technology therefore we need a jks file (Java Key Store) or a PKCS#12 file with t...
Access logs
Description The access log page allows querying all the information about the opened sessions. Note that any session that was active during the specified date will be shown, even when it started before of finished after that date. Screen overview Cust...
⏰ Getting started
What is Soffid Break glass? It refers to a mechanism that allows users to gain emergency access to critical systems or information under exceptional circumstances when normal access procedures are not viable. Break glass is a crucial component of security a...
Step 1.1.- How to install Soffid Break glass add-on?
Installation Download Please download the Soffid Break glass add-on. You could download it at the following link http://www.soffid.com/download/enterprise/ if you have a Soffid user with authorization, or in the following http://download.soffid.com/download...
Break-glass recovery configuration
Definition Break glass is the mechanism that allows users to gain emergency access to critical systems or information under exceptional circumstances when normal access procedures are not viable. For more information you can visit the Break Glass book. Sc...
Step 1.2.- How to install Soffid Break glass tool?
Intallation Execute the Store YAML version: '2' services: breakglass: image: eu.gcr.io/soffid-cloud/breakglass:1.0.3 environment: JAVA_KEYSTORE: /opt/soffid/tomee/certificados/breakglass.jks KEYSTORE_PASS: <YOUR_KEYSTORE_PASS> ...
Step 3.- How to use Soffid Break glass recovery tool?
If your system is working fine A window like this will be displayed: If your system is broken You could use Soffid break glass tool: 1. First of all, browse to your Soffid break glass tool URL 2. Soffid break glass tool offer you two options Br...