Search Results

Definition Account naming rules define how to generate account names for target systems. The normal case is the account name will be the same as the user name, in other cases, here you could define the customized account name rules. When you are configuring ...

Definition Soffid provides an easy to use mechanism to translate references or external codes into internal codes. For example, the HHRR application could be using a diferent coding scheme for business units. To deal with this data mismatch, users can extend...

Description The Network discovery tool will be in charge to scan the networks to find the hosts and retrieve information about user accounts. Network discovery can detect system accounts as well. First of all, you need to create the networks that you want to...

You can consult the list of Soffid attributes: User Object Account Object Group Object Role Object Grant Object Maillist Object Membership Object dispatcherService Authoritative change object User object A user objects are maps that hold the...

Note that Soffid supports different scripting languages, you can configure it in the Smart engine settings screen. Soffid 4 configures the smart engine with Javascript scripting language as the default. Additionally, in the initial configuration of the cont...

Crypt Crypt allows to encrypt text with different algorithms and verify the resulting hash. To use this class: com.soffid.iam.crypt.Crypt All methods are static: hash(String algorithm, String text) -> String pBKDF2Sha256(String text, String utf8Salt, int ...

Description This page groups together several features related to the workflow engine. Document manager Soffid can use any document repository to store documents generated by workflows, reporting addon, or any other addon. The document repository can be ei...

Description Soffid includes a BMP (Business Process Management) in its Smart Engine to provide useful workflows integrated with the processes and the policies of the Soffid core.  In order to add extra functionality to the console, you can upload different b...

Description BPM is a technology that allows modeling, implementing, and executing processes automatically to enhance efficiency and productivity in support of enterprise goals. Soffid includes a BMP (Business Process Management) in its Smart Engine to provid...

Definition Soffid console provides a granular access control system. That granular control system allows the administrator user to assign granular permissions to roles. Be in mind that some permissions may inherit some other permissions. You cannot assign pe...

Definition This page gathers different types of settings that may affect user authentication in the Soffid Console. Soffid could use different kinds of external authentication sources. These mechanisms could be selectively enabled or disabled. Screen overvi...

Definition On this page, you can configure the password policies that will be applied when assigning a new password, always depending on the password domain selected by that system and the type of user selected. Therefore, the two main components of this pag...

Definition Soffid provides the functionality that allows you to configure the Jump servers. To configure that functionality is mandatory to install PAM following the instructions of the PAM installation page. A Jump server is the control point that forces u...

Definition Privileged Access Management (PAM) policies are a set of guidelines and controls that dictate how privileged access is granted, managed, and audited within an organization. Soffid allows you to define policies, those policies can be made up of sev...

Definition Soffid allows you to define rules to detect commands executed on a server. When a user launches a command defined on a rule, Soffid will detect it. To use those rules you need to define the PAM policies. For more information, you can visit the PAM...

Definition Soffid has defined automatic events by default. For each of these events, it is possible to define the tasks to be performed and configure them. Once the necessary issues have been configured, there are other screens for viewing and managing them....

Definition Soffid includes Digital certificate functionality as a security enhancement. You could add new Digital certificates, internal or external. If you select the external certificate, you could add a valid certificate to Soffid; If you select the inter...

Definition The OTP settings allow the administrator users to configure the available OTP options. Soffid provides six different OTP implementations. This page is available if you have previously installed the Soffid OTP add-on. Configure these options as a ...

Description Soffid provides you the functionality that allows to the users recover their passwords. To do this, the administrator user, or a user with the proper roles/authorizations, must first config the password recovery settings. This setting can be use...

Description The attribute definition page displays all the auto-generated user attributes. Those attributes will be the attributes to deliver from the identity providers to the service providers depending on the defined rules. Soffid has a default implementa...