Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

Applies to:

...

(tick) Kyvos Enterprise 

...

(tick) Kyvos Cloud (SaaS on AWS)

...

(tick) Kyvos

...

AWS Marketplace

...

(tick) Kyvos

...

Azure Marketplace  

...

(tick) Kyvos GCP Marketplace (tick) Kyvos Single Node Installation (Kyvos SNI

...

)

...

Single sign-on (SSO) is a framework that enables users to securely authenticate multiple applications and websites using a single set of credentials (username and password). The application, or the website being accessed, relies on a trusted third-party to verify the users.

Kyvos supports external authentication and SSO in addition to its built-in authentication.

...

Panel
panelIconIdatlassian-note
panelIcon:note:
bgColor#DEEBFF

Note

  • This is an optional

    post

    post-deployment SSO Configuration for Kyvos Web Portal.

  • From Kyvos 2023.3 onwards, you can see the last performed SSO operation details, including progress status and start time, by clicking the iicon located next to the Revert button.

     To

     To view more comprehensive details, simply click

    the 

    the View Details link, which will take you to

    the 

    the Operations

     page

     page, where you can view the operation information in detail. 

If SSO is configured in Kyvos through an external authentication, users can use their LDAP credentials to log into the Kyvos Web. The external identity provider (like Okta) authenticates the user against the configured LDAP/AD and redirects them to the Kyvos Web application on successful login. When Kyvos receives a successful authentication (through SAML) response from the identity provider, it fetches the user profile details, like username, user login, password, etc., from the identity provider. These details are added to the user information in the Kyvos session object.

Kyvos supports the following SSO authentication methods:

  1. Okta using SAML 2.0

  2. Windows Authentication using:

    • Waffle

    • Jespa