Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

Applies to:Kyvos Enterprise  Kyvos Cloud (Managed Services on AWS)  Kyvos Azure Marketplace

Kyvos AWS Marketplace  Kyvos Single Node Installation (Kyvos SNI)  Kyvos Free (Limited offering for AWS)


Single sign-on (SSO) is a framework that enables users to securely authenticate multiple applications and websites using a single set of credentials (username and password). The application, or the website being accessed, relies on a trusted third-party to verify the users.

Kyvos supports external authentication and SSO in addition to its built-in authentication.

Note

  • This is an optional post-deployment SSO Configuration for Kyvos Web Portal.

  • From Kyvos 2023.3 onwards, you can see the last performed SSO operation details, including progress status and start time, by clicking the i icon located next to the Revert button. To view more comprehensive details, simply click the View Details link, which will take you to the Operations page, where you can view the operation information in detail. 

If SSO is configured in Kyvos through an external authentication, users can use their LDAP credentials to log into the Kyvos Web. The external identity provider (like Okta) authenticates the user against the configured LDAP/AD and redirects them to the Kyvos Web application on successful login. When Kyvos receives a successful authentication (through SAML) response from the identity provider, it fetches the user profile details, like username, user login, password, etc., from the identity provider. These details are added to the user information in the Kyvos session object.

Kyvos supports the following SSO authentication methods:

  1. Okta using SAML 2.0

  2. Windows Authentication using:

    • Waffle

    • Jespa

  • No labels