Search Results

Introduction KojiKabuto.exe, the main Soffid ESSO component, picks settings and rules automatically from Soffid synchronization server at login. This configuration can be updated by running the command "KojiKabuto update". Once run, new rules will apply to al...

How to access? When you try to connecto to a Windows machine by using Soffid ESSO, you need to enter your user and password in the Windows login page.  If the user does not exists in this machine, depending on the attribute "Create local accounts when there ...

Introduction Soffid ESSO is a full Enterprise Single Sign on solution. Here you can find the details about the ESSO +3.5.0-enterprise installation. Supported platforms Soffid ESSO supports Windows XP or later workstations. Windows Interactive installatio...

How to access? When you try to connect to a Linux machine using Soffid ESSO, you will need to enter your username and password on the Linux login page. If the user does not exists in this machine, depending on the attribute "Create local accounts when there ...

What is Soffid Authenticator? Soffid provides an application to be used with Soffid Identity Provider to obtain SSO and MFA for any web or legacy application. It supports one-click push authentication for login. Please note that for push authentication to w...

How to access? For domain member hosts, ESSO will remove all existing local accounts except for those with a dependand service. So, in order to access with administrator privileges, user must use a domain account with local administrator privilege, or either ...

Introduction Adaptive authentication is designed to improve the security of online accounts by adding an additional layer of protection against unauthorized access. When the authentication is being defined, Soffid allows you to add some adaptive authenticati...

How to access? For domain member hosts, ESSO will remove all existing local accounts except for those with a dependand service. So, in order to access with administrator privileges, user must use a domain account with local administrator privilege, or either ...

Introduction Active Directory Back Channel refers to a mechanism that allows Soffid to synchronize user information with an external Active Directory (AD) server in real-time or near real-time (Password synchronizer). This synchronization ensures that both So...

Introduction Soffid provides a collection of add-ons that can be installed to add functionalities to the Soffid Console. There are several Addons available to be installed to add functionalities to the Soffid Console. These add-ons can be found at: http://ww...

What is WSSO for legacy applications? Nowadays, it's very common to have a mix of different technologies and products to deliver information to customers, providers or internal users. With Soffid IAM you can get the same user and password for every applicati...

Installation In order to install Web Single Sign on, the following components must be installed and running Soffid IAM Console version 1.2.1 or later Soffid IAM Synchronization server 1.2.1 or later Soffid SAML Identity Provider version 1.0.0 o...

Web Single Sign On acts introducing credentials to the underlying web application on behalf of the user. To perform its job, WSSO can: Identify the user when needed Modify pages generated by the web application in order to adapt them to the single si...

The system is configured using Apache configuration files, plus some ECMA script files that can be located anywhere you want. If you are using Ubuntu Server, it is necessary remove apache_mpm_worker module and install apache_mpm_prefork one. In general, Soff...

Soffid Federation is based on shibboleth open source project. Actually the installation is a mixed procedure between Shibboleth installation and Soffid configuration. In the future Shibboleth installation will be integrated on Soffid installation in order to a...

Configuring Soffid WSSO The system is configured using Apache configuration files, plus some ECMA script files that can be located anywhere you want. In general, Soffid WSSO acts intercepting and modifying any request made to Apache. This request can be proc...

Scripting language The scripting language is fully compatible with ECMAScript 3rd edition plus a small set of new objects and methods. Before running the script, Soffid WSSO will create some global variables referring to the request of the user agent and con...

Add the following settings to Apache: <Location /> ShibRequireSession off ShibRequestSetting applicationId drupal AuthType shibboleth Require shibboleth </Location> SoffidOnLoadScript .* .* 60000 /etc/apache2/soffid/drupal-login.js SoffidPostData...

The following attributes must be added to apache configuration <Location /> ShibRequestSetting applicationId forum ShibRequireSession off AuthType shibboleth Require shibboleth </Location> <Location /ucp.php> Shi...

What is Soffid LDAP? Soffid LDAP is a complete LDAP Server based on OpenLDAP. It is always distributed as a docker container. The proposed system architecture is as follows: The SoffidLDAP is not directly using  Soffid database. Instead, it is using its ow...