Versions Compared

Old Version 2

changes.mady.by.user Debesh Roy Chowdhury

Saved on

compared with

New Version 3

changes.mady.by.user Brian Miller

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Refactor User Management page for Admins

Authentication Providers

Syndeia Cloud includes a configurable choice of Authentication Identity Providers for the users of the Syndeia Web Dashboard.

An Identity Provider is a repository of User Profiles for individuals that are recognized by the organization. Common Identity Providers include Microsoft Active Directory, OpenLDAP servers, numerous SAML2 IdPs, and Social Networking services such as Google, GitHub, and LinkedIn.

Syndeia Cloud v3.5 and later allows an organization to choose one or more of the following Identity Providers:

  • Local
    Syndeia acts as its own Identity Provider

  • LDAP
    Syndeia delegates authentication requests to an LDAP server that is available on the corporate network

    • Secure LDAP (LDAPS)
      Syndeia delegates authentication requests to a Secure LDAP server – a server that is using SSL for its LDAP URLs – that is available on the corporate network

    • Microsoft AD
      Using either the LDAP or the Secure LDAP configuration, Syndeia delegates authentication requests to a Microsoft Active Directory server that is available on the corporate network

  • SAML2
    Syndeia delegates authentication requests to the organization’s choice of SAML2 Identity Provider such as Ping Federate or Okta.

Authentication Provider Configuration Guides

Page Tree
expandCollapseAlltrue
rootAuthentication Providers and their Configuration
spacesSYN35
startDepth1

Administrator Access

A Syndeia Cloud installation allows offers at least one super-user administrator account. The initial setting for the administrator account is name: super.user and password: syn45ia

...

(warning) We strongly recommend changing the username and password from the default.  

Managing Users

Visit Managing Syndeia's Users with the Web Admin Page to perform these operations. User Management - Web Dashboard to perform these operations.

Advanced Authentication Methods

Syndeia Cloud (SC) currently supports 3 different types of authentication mechanisms:

  • Local Authentication : best for small-size organizations that do not have a central directory service (supported automatically out-of-the-box and required for administrative operations)

  • LDAP Authentication : best for medium-size organizations that (typically) have an internal-only directory service

  • SAML2 Authentication : best for large-size organizations that have multiple web-based applications needing centralized control over more sophisticated authentication methods (typically supporting 2-Factor Authentication (2FA) / Multi-factor Authentication (MFA), Common Access Control (CAC) cards, SMS, etc. ) and authorization control

A SC administrator should select an authentication mechanism based on their organizational requirements and review the relevant configuration pages below for further steps:

Page Tree
root@self
startDepth1