Skip to main content
Advanced Search
Search Terms
Content Type

Exact Matches
Tag Searches
Date Options
Updated after
Updated before
Created after
Created before

Search Results

240 total results found

TACACS+ Example

Federation TACACS+

Service Provider Information Systems When a Tacacs Service Provider is created, Soffid creates an Information System There are some roles defined for this Information System (0: anonymous, 1: user, ....15: root)

Soffid
3.4
Addon
Federation
Tacacs+

SAML Example

Federation SAML

Service Provider

Soffid
3
Addon
Federation
SAML

How to install Role mining in Soffid

Installation Download Please download the Soffid Role mining add-on. You could download it at the following link http://www.soffid.com/download/enterprise/ if you have a Soffid user with authorization, or in the following http://download.soffid.com/download...

Soffid
3.4
Addon
Role Mining
Tools
Role mining

Connecting Office 365

Federation

Introduction You can use an Identity Provider defined into Soffid to connect to Office 365. You only need to register the Office 365 metadata into a Soffid Service Provider and register the Identity Provider Metadata into your Office 365. At this tutorial So...

Soffid
3
Addon
Federation
Office 365

Introduction to Role mining

What is Role mining? Role mining is a process of analyzing user permissions and activities within an organization's information systems to identify common patterns of access and activity. The goal of role mining is to create roles or groups of users with simi...

Soffid
3.4
Addon
Role Mining
Tools
Role mining

Recertifications to do

Recertification Recertification

Description When a campaign is run, the pending recertifications will be displayed in the Recertifications to-do list of the proper user who has to Accept or Deny the recertification. The user who has to manage the recertification can delegate it as well to a...

Soffid
3
Addon
Recertification

Step 4.2. Create an agent (Optional)

PAM Implementation guide Step 4. Register additional resources (...

That step will be an optional step, and it will be mandatory only when the SQL Server agent or the Oracle agent was not created previously on Soffid Console and you need to add a database to manage its accounts. Step-by-step 1. First of all, to create an a...

Soffid
3
PAM
PAM Implementation
Addon

Step 4.3. Reconcile (Optional)

PAM Implementation guide Step 4. Register additional resources (...

To request the accounts you must launch the reconciliation process. The main purpose of reconciling process is to provide a mechanism to ensure that all users are aligned on the specific roles and responsibilities. Step-by-step 1. First of all, you need to...

Soffid
3
PAM
PAM Implementation
Addon

Introduction to Identity Federation

Federation

What is Identity Federation? A federated identity in information technology is the means of linking a person's electronic identity and attributes, stored across multiple distinct identity management systems. The federation is a system of trust between two par...

Soffid
3
Addon
Federation
SAML
OpenId Connect

Radius architecture

Federation Radius

Introduction Access Reject: The user is unconditionally denied access to all requested network resources. Reasons may include failure to provide proof of identification or an unknown or inactive user account. Access Challenge: Requests additional infor...

Soffid
3
Addon
Federation
Radius

TACACS+ architecture

Federation TACACS+

Introduction

Soffid
3.4
Addon
Federation
Tacacs+

Connecting an OpenID Connect service

Federation Connecting Service Providers

Introduction There are three basic OpenID flows, depending whether the service name must be authenticated using its client secret or not: OpenID flow Implicit flow The Service Provider sends the user to the IdP. The IdP authenticates the user. The ...

Soffid
3
Addon
Federation
OpenId Connect

Connecting a SAML service

Federation Connecting Service Providers

Introduction To connect a SAML service provider, the service provider must offer you its SAML metadata. The SAML metadata contains information about its public id, the services that implement and the service endpoints. Register a SAML service provider 1. Op...

Soffid
3
Addon
Federation
SAML

Connecting Soffid console

Federation Connecting Service Providers

Introduction Soffid console has a built-in SAML client, so it can act as a service provider in the Soffid federation. It is interesting to use this configuration, as it allows you to enforce the use of two factors authentication to log into the Soffid console...

Soffid
3
Addon
Federation
External XAML

Connecting your custom applications

Federation Connecting Service Providers

Introduction SAML 2.0 is a complex and not easy to implement standard. There are some libraries that can help somewhat, but a correct implementation needs a deep knowledge of SAML protocol, and is always hard to test and debug. To make it easier, Soffid prov...

Soffid
3
Addon
Federation
Vustom applications

Openid-connect Dynamic Register

Federation Connecting Service Providers

Introduction Openid-connect allows a service provider registers dynamically other service providers. Dynamic Register To dynamically register a client, acquire an initial access token, and then register the new application by using the registration API. You...

Soffid
3
Addon
Federation
Openid-connect Dynamic Register

Connecting CAS client

Federation Connecting Service Providers

Introduction The CAS protocol is a simple and powerful ticket-based protocol. It involves one or many clients and one server. Clients are embedded in CASified applications (called “CAS services”) whereas the CAS server is a standalone component. Register CAS...

Soffid
3
Addon
Federation
CAS

Connecting Tacacs+

Federation Connecting Service Providers

Introduction TACACS (Terminal Access Controller Access Control System) is a security protocol that provides centralized validation of users who are attempting to gain access to a router or NAS TACACS+ is a protocol for AAA services: Authentication Author...

Soffid
3
Addon
Federation
Tacacs+

Connecting Radius client

Federation Connecting Service Providers

Introduction The Radius protocol (Remote Authentication Dial-In User Service) is a networking protocol that authorizes and authenticates users who access a remote network. Register a Radius client 1. Open the Identity & Service Provider page. Main Menu > A...

Soffid
3
Addon
Federation
Radius

Example Password Vault PEP

XACML XACML Examples

Password Vault Policy Enforcement Point Use case example 1 We want to define a policy to restrict access to the Soffid Password Vault. The users who are assigned to the SOFFID_ADMIN role (from this point forward: end-users) will have limitations to perform ...

Soffid 3
Addon
XACML