Search Results

Installation Download Please download the Soffid Break glass add-on. You could download it at the following link http://www.soffid.com/download/enterprise/ if you have a Soffid user with authorization, or in the following http://download.soffid.com/download...

Definition Break glass is the mechanism that allows users to gain emergency access to critical systems or information under exceptional circumstances when normal access procedures are not viable.  For more information you can visit the  Break Glass book. Sc...

Intallation Execute the Store YAML version: '2' services: breakglass: image: eu.gcr.io/soffid-cloud/breakglass:1.0.3 environment: JAVA_KEYSTORE: /opt/soffid/tomee/certificados/breakglass.jks KEYSTORE_PASS: <YOUR_KEYSTORE_PASS> ...

If your system is working fine A window like this will be displayed: If your system is broken You could use Soffid break glass  tool: 1.  First of all, browse to your  Soffid break glass tool URL 2.  Soffid break glass tool offer you two options Br...

Configuration Once you have installed the Break glass addon and Break glass tool, you must configure this tool Steps Break-glass recovery configuration 1.  First of all, you need to configure the Break glass recovery. To do this, you need to browse to  Bre...

Definition Privileged Access Management (PAM) policies are a set of guidelines and controls that dictate how privileged access is granted, managed, and audited within an organization. Soffid allows you to define policies, those policies can be made up of sev...

The purpose of this tutorial is to show how to install Jump servers and configure PAM using Docker compose, to use critical resources without knowing the password required. Jump Server A jump server, jump host or jump box is a system on a network used to a...

The purpose of this tutorial is to show how to install Jump servers and configure PAM using Kubernetes, to use critical resources without knowing the password required. Jump Server A jump server, jump host or jump box is a system on a network used to acces...

Description Soffid agents are the tool that allows the connection between the Soffid console and the target systems. To establish the connection with target systems, Soffid provides a large number of connectors that will be able to set up into the Soffid cons...

Installation Download Please download the Soffid Federation add-on. You could download it at the following link http://www.soffid.com/download/enterprise/ if you have a Soffid user with authorization, or in the following http://download.soffid.com/download/...

Definition Soffid includes Digital certificate functionality as a security enhancement. You could add new Digital certificates, internal or external. If you select the external certificate, you could add a valid certificate to Soffid; If you select the intern...

The purpose of this tutorial is to show how to install Jump servers and configure PAM using Dockers, to use critical resources without knowing the password required. Jump Server A jump server, jump host or jump box is a system on a network used to access a...

When making any manual changes to the Sync server configuration files, it will be necessary to copy these changes to the Kubernetes secrets. Command example:  java -cp "/opt/soffid/iam-sync/bin/bootstrap.jar" com.soffid.iam.sync.bootstrap.KubernetesSaver ...

When you install soffid Sync server in kubernetes, a properties file is generated. If this file is not saved in a permanent storage, it could be lost during the Syns Server upgrade process. Here you are the steps to copy your Kube config to a data base table ...

Step-by-step To enable the kerberos authentication method, the identity provider must have a keytab file that enables it to authenticate users. The steps to get it are described below: 1. First of all, you need to create a net user. You can use the old-fashi...

Description An identity provider (abbreviated IdP or IDP) is a system entity that creates, maintains, and manages identity information for principals and also provides authentication services to relying applications within a federation or distributed networ...

Description A profile is a protocol or subset of protocols implemented by the Identity Provider. There are some accepted protocols, those allows a custom config dependent on the selected profile. The accepted protocols are the following: 1. OpenIDProfile 2...

Guide to install IAM Console using Docker.  There is a public docker image at docker hub: https://hub.docker.com/r/soffid/iam-console/ Prerequisites Docker 8GB RAM > 10GB disk space (50GB recomended) Supported database installed Video Tutorial In...

Definition Soffid could use different kinds of external authentication sources. These mechanisms could be selectively enabled or disabled. Screen overview Standard attributes Global status Maintenance mode (only administrators can log in): if this...

Definition Here is an explanation about how to configure the ESSO profile by using Soffid as Identity Provider. Please note that the profile parameters will be automatically updated on the PCs. Screen overview Standard attributes Class: class name (re...