Search Results

Introduction Steps to configure Office 365 as External SAML identity provider. Step-by-Step 1. Open a https://portal.azure.com 2. Open Microsoft Entra ID and then select Enterprise applications option   3. Select All applications and click New Applic...

In this case I use self-signed certificates, these certificates are valid for a laboratory environment. 1.1. Generate Store JKS a. Generate a key sudo openssl genrsa -aes256 -out soffid.pam.store.key b. Generate the .pem file sudo openssl req -x509 -days ...

Introduction In some organizations is necessary to assign roles that affect only a part of the structure, for instance, a department, a division or a country. A Holder Group can be defined as a collection of entities (referred to as "holders") that share simi...

Steps to configure 1. Group type: Create at least one organizational unit with the role holder attribute active (yes). https://bookstack.soffid.com/books/soffid-3-reference-guide/page/group-type 2. Groups: Assign Groups to the organizational unit. Define ...

Premises 1. An Organizational Unit has been defined as Role holder Yes. 2. Several groups have been defined with type organizational unit with role holder Yes. 3. An attribute sharing policy has been defined. 4. Indicates which Service Providers will...

Password Rotation using Windows Connector When you are configuring password rotation using WIndows Connector, it could be necessary to make some changes in the local computar policies. The Local Computer Policies on the target Windows server mentioned below:...

Title Necessary authorization to use pam service. Affected Product Code Base Soffid Console - 3.6.31 Descripition Recently the Soffid IAM team detected and corrected a low vulnerability that had been detected in the product's Console. This vulnerability r...

Autenticación NTLM para SQL Server Soffid Versions To install Soffid using Windows native authentication in SQL Server you will need an specific or higher versions of Console and Sync Server: Console 3.6.36 or higher Sync server 3.6.26 or higher You c...

Console version 3.6.37 Check Console version 3.6.32 Release notes NTLM authentication for SQL Server In case of an upgrade with SQL Server, the service must be uninstalled and reinstalled. If you need to uninstall Sync Server in a Windows installation,...

Sync Server Version 3.6.26 NTLM authentication for SQL Server In case of an upgrade with SQL Server, the service must be uninstalled and reinstalled. If you need to uninstall Sync Server in a Windows installation, you also need to remove the Sync Server Ser...

Introduction Soffid offers the tools to consult all the information related to PAM. With these tools we can consult: Accounts enabled for jump server. Accounts with elevated privileges. Jump server sessions. Storage used by the PAM storage server. Free...

Step-by-step 1.  To activate the Privileged accounts dashboard view you will need to enable the Feed statistic tables task on the  Scheduled tasks page. Screen overview Scheduled task Privileged accounts dashboard

Description Displays the tasks in which the user is involved like a supervisor, manager, or person responsible for approving or rejecting those tasks. My tasks provides information about the process, the task, the start and due date and the asigned user. By ...

Description Soffid provides a tool to manage all issues and allows you to perform the operations available for each type of task. The actions to be performed will depend on each kind of task. The incidents that appear on this screen are those that the user h...

Description Soffid provides a complete workflow engine that allows you to incorporate business processes or define new business processes as needed. End-users with the appropriate permissions will be able to request these processes. You can visit Self service...

Description A process is a series of actions, connected by transitions. An action could be either an automatic action or a manual task. A process is what we commonly refer to as a workflow in Soffid. Soffid console is concerned about task delegation and work...

Description My application is a part of the Identity self-service that allows end-users to start corporate applications and third party applications. Also, the end-user can view and use the shared accounts available for the user defined on the Password vault....

Description My OTP devices are part of a Soffid Self-service portal that allows end-users to access their OTP devices configured. That option display to each user, all their OTP devices and also allows you to manage those and add new OTP devices. Soffid Adm...

Description My Account is a part of the Identity self service that allows end-users to access and manage their personal accounts. That option displays all personal accounts for each user and allows you to set and/or view the password for each account if they...