Authentication Providers
Syndeia Cloud includes a configurable choice of Authentication Identity Providers for the users of the Syndeia Web Dashboard.
An Identity Provider is a repository of User Profiles for individuals that are recognized by the organization. Common Identity Providers include Microsoft Active Directory, OpenLDAP servers, numerous SAML2 IdPs, and Social Networking services such as Google, GitHub, and LinkedIn.
Syndeia Cloud v3.5 and later allows an organization to choose one or more of the following Identity Providers:
Local
Syndeia acts as its own Identity ProviderLDAP
Syndeia delegates authentication requests to an LDAP server that is available on the corporate networkSecure LDAP (LDAPS)
Syndeia delegates authentication requests to a Secure LDAP server – a server that is using SSL for its LDAP URLs – that is available on the corporate networkMicrosoft AD
Using either the LDAP or the Secure LDAP configuration, Syndeia delegates authentication requests to a Microsoft Active Directory server that is available on the corporate network
SAML2
Syndeia delegates authentication requests to the organization’s choice of SAML2 Identity Provider such as Ping Federate or Okta.
Authentication Provider Configuration Guides
Page Tree | ||||||||
---|---|---|---|---|---|---|---|---|
|
Administrator Access
A Syndeia Cloud installation allows offers at least one super-user administrator account. The initial setting for the administrator account is name: super.user
and password: syn45ia
...
We strongly recommend changing the username and password from the default.
Managing Users
Visit Managing Syndeia's Users with the Web Admin Page to perform these operations. User Management - Web Dashboard to perform these operations.
Advanced Authentication Methods
Syndeia Cloud (SC) currently supports 3 different types of authentication mechanisms:
Local Authentication : best for small-size organizations that do not have a central directory service (supported automatically out-of-the-box and required for administrative operations)
LDAP Authentication : best for medium-size organizations that (typically) have an internal-only directory service
SAML2 Authentication : best for large-size organizations that have multiple web-based applications needing centralized control over more sophisticated authentication methods (typically supporting 2-Factor Authentication (2FA) / Multi-factor Authentication (MFA), Common Access Control (CAC) cards, SMS, etc. ) and authorization control
A SC administrator should select an authentication mechanism based on their organizational requirements and review the relevant configuration pages below for further steps:
Page Tree | ||||
---|---|---|---|---|
|