Admin Portal Authentication & Authorisation
The Admin Portal is a portal for solution configuration
Authentication
A user can be authenticated using one of three methods:
- Username/password
- 'Social' SSO
This includes the following authentication sources:- Google(OAuth2.0)
- Github(OAuth2.0)
- Enterprise federated IdP SSO
We can support the following IdP providers or any SAML/OpenID Connect IdP- Microsoft Azure AD
- Active Directory/LDAP
- Google Workspace
- ADFS
- Ping Federate
- Okta Workforce
Authorisation
We can support Role-Based Access Control(RBAC) and Policy-Based Access Control for authorisation, and can implement these based on an Enterprise IdP's groups.
If neither of these is in place, we operate a two-stage onboarding for new users. The user must register and authenticate with the portal, and a trusted source from within your company (this is confirmed during implementation and onboarding) must then request access with appropriate permissions and a user identifier. If they do not exactly match, then the request will be refused and must be re-logged. e.g. Joe Bloggs registers with their email [email protected] however the request comes for read permissions for [email protected].
Updated about 2 months ago