Applies to: Kyvos Enterprise Kyvos Cloud (SaaS on AWS) Kyvos AWS Marketplace
Kyvos Azure Marketplace Kyvos GCP Marketplace Kyvos Single Node Installation (Kyvos SNI)
OpenID Connect (OIDC) is a federated SSO authentication protocol built over OAuth2.0 and is already supported for authentication in the Kyvos Web Client.
Note
From Kyvos 2024.1 onwards, a restart of the Kyvos Web Portal will not be required for Kyvos security configuration (Web based SSO).
To access Excelerate Web and Desktop through OIDC, you must configure confidential and public OIDC.
To access Tableau Server and Desktop through OIDC, you must configure confidential and public OIDC.
From Kyvos 2023.5 onwards, Kyvos supports OIDC authentication (Browser-based login/SSO ) for Excelerate desktop and web version.
Configuration Type | Kyvos Web Portal | Excelerate Desktop | Excelerate Web | Tableau Desktop | Tableau Server |
Confidential OIDC |
|
|
|
|
|
Public OIDC |
|
|
|
|
|
To configure the OIDC (Auth2.0) as an external authentication provider for the Kyvos Web Portal, perform the following steps.
On the navigation pane, click Security > Web based SSO.
The Web based SSO dialog is displayed.Select the Enable External Authentication check box to define the external authentication mechanism for the Kyvos Web portal.
Select the OIDC option from the Provider list.
Enter details as:
Parameter/Field | Comments/Description |
---|---|
Header Name | Enter the name of the HTTP header that contains the user name in the HTTP request. |
Header Type | Select the type of value to be sent by the external authentication tool as an SSO token. |
Error Redirection URL | Enter the URL to which the user will be redirected if there is an error in authenticating the Kyvos application with OIDC |
For OIDS Settings for Confidential Client and Public client, enter details as:
Click the Save button to save changes.