Search Results

Step-by-step 1. To deploy the identity provider is advisable to install a dedicated sync server. It can be configured as a proxy sync server as it does not need direct access to Soffid database. Instead, it will connect to main sync servers to get users and f...

There is a service point to allow users change their passwords. Simply redirect the user to: https://<YOUR_SYNCSERVER_HOSTNAME>:1443/protected/passwordChange For instance: https://iam-sync-idp.soffidnet:1443/protected/passwordChange 💻 Image The u...

Operations This page shows the operations that can be performed for the user object. List all Request GET http://<your-domain>/soffid/webservice/scim2/v1/User Response 200 OK { "schemas": [ "urn:ietf:params:scim:api:messages:2.0:ListRespons...

Definition This step is used to define a custom script that will be executed  Steps Tabs Task details All the process types have the same Task details for the Custom step: Script: allows you to define a Script this step allows you to add a script to be ...

Definition The Service Providers are standard applications that rely on Identity Providers to let the users log in. Join federation To join the federation, the service provider management team must deliver its "Metadata". The service provider Metadata descr...

Description Soffid can use any document repository to store documents generated by workflows, reporting addon, or any other addon. The document repository can be either a local directory or a remote one accessed using FTP, SMB, HTTP protocols. Depending on t...

Definition That is the first step of the workflow. At that step, you could define the fields you want to show when the end users. In that case, the request will be launched automatically when the end users request to use a privileged account to connect to a p...

Introduction Here we will try to explain some user cases about different types of process to know how that processes work. That processes will be a basic user cases, but you will be able to define process as much complex as your business needs. For more info...

What is Soffid Break glass? It refers to a mechanism that allows users to gain emergency access to critical systems or information under exceptional circumstances when normal access procedures are not viable.  Break glass is a crucial component of security a...

Installation Download Please download the Soffid Break glass add-on. You could download it at the following link http://www.soffid.com/download/enterprise/ if you have a Soffid user with authorization, or in the following http://download.soffid.com/download...

Definition Break glass is the mechanism that allows users to gain emergency access to critical systems or information under exceptional circumstances when normal access procedures are not viable.  For more information you can visit the  Break Glass book. Sc...

Intallation Execute the Store YAML version: '2' services: breakglass: image: eu.gcr.io/soffid-cloud/breakglass:1.0.3 environment: JAVA_KEYSTORE: /opt/soffid/tomee/certificados/breakglass.jks KEYSTORE_PASS: <YOUR_KEYSTORE_PASS> ...

If your system is working fine A window like this will be displayed: If your system is broken You could use Soffid break glass  tool: 1.  First of all, browse to your  Soffid break glass tool URL 2.  Soffid break glass tool offer you two options Br...

Configuration Once you have installed the Break glass addon and Break glass tool, you must configure this tool Steps Break-glass recovery configuration 1.  First of all, you need to configure the Break glass recovery. To do this, you need to browse to  Bre...

Installation Download Please download the Soffid Federation add-on. You could download it at the following link http://www.soffid.com/download/enterprise/ if you have a Soffid user with authorization, or in the following http://download.soffid.com/download/...

Step-by-step To enable the kerberos authentication method, the identity provider must have a keytab file that enables it to authenticate users. The steps to get it are described below: 1. First of all, you need to create a net user. You can use the old-fashi...

Description A profile is a protocol or subset of protocols implemented by the Identity Provider. There are some accepted protocols, those allows a custom config dependent on the selected profile. The accepted protocols are the following: 1. OpenIDProfile 2...

Introduction Soffid provides a collection of add-ons that can be installed to add functionalities to the Soffid Console. There are several Addons available to be installed to add functionalities to the Soffid Console. These add-ons can be found at: http://ww...

What is Recertification? The Recertification addon provides the functionality to review access rights to make sure the users have access only to what they need.  This process increases security and makes the recertification process auditable and compliant. S...

Introduction Adaptive authentication is designed to improve the security of online accounts by adding an additional layer of protection against unauthorized access. When the authentication is being defined, Soffid allows you to add some adaptive authenticati...