Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

These mechanisms could be selectively enabled or disabled.

Image Modified

...

Sections

Username and password

Image Modified

Internal

The first option , the only enabled by default in the installation of Soffid, it is the internal username and password authentication mechanism.

...

But not all the external systems are included, only the ones they have marked the check "Trust password" on the agent. For more information about agents please check Agents.

Image Modified











Once it's configured, Soffid will still use its internal tables to authenticate usernames and passwords.

...

External SAML identity provider

Image Modified

It should be noted that this feature does not depend on federation addon, it is a feature included by default in the smart engine of the Soffid to allow include in the authentication flow a mechanism to use  third party SAML system.

...

If SAML Identity Provider is enabled, as well as username and password, the user will have the chance to select the preferred authentication method. Otherwise, if only SAML is enabled, the user will be automatically redirected to SAML Identity Provider.

image2020-1-8_12-46-50.pngImage Modified

Enable LinOTP integration

Image Modified

Soffid could be configured to request the user to authenticate using a second factor authentication to perform certain actions.

...

Second Factor Authentication configuration

Image Modified

This section requires to have the LinOTP integration enabled (previous section).

...

In both configurations, if OTP is required by the user, a popup requesting the token value is raised.

Image Modified