Security |
|
The pasUnity framework supports four modes of authentication as detailed below:
•pasPortal Single Sign-On (SSO): (indicated by the blue puzzle-piece icon) In this mode of operation users of the windows-based user interface and consumers of the application web-services must authenticate using a user name and password as defined, validated, and administered using the pasPortal hosted application. This method of authentication works out of the box with no special configuration required.
•Windows Native Authentication: (indicated by the round Windows logo icon) In this mode of operation users of the windows-based user interface and consumers of the application web-services must authenticate using the identity of the currently logged on Windows user account via ADFS from within the pasUNITY hosted infrastructure. This method of authentication works only in the pasUNITY hosted environment.
•Active Directory Federation Services (ADFS): (indicated by the non-framed Windows logo icon) In this mode of operation users of the windows-based user interface and consumers of the application web-services must authenticate using the identity of the currently logged on Active Directory Domain Services user account in an domain that has been configured to use federated security using Active Directory Federation Services and the Windows Identity Framework to establish a relationship for authentication and authorization with the pasPortal SSO framework. This method of authentication requires special configuration in conjunction with technical support.
•Azure Cloud Services Access Control Services (ACS): (indicated by the round framed cloud icon) In this mode of operation users of 3rd party single sign-on solutions capable of integrating with the Azure ACS services may be used to integrate with the pasPortal SSO framework. This mode of operation requires a collaborative effort to implement is not natively supported. This method of authentication requires special configuration in conjunction with technical support.
After the interactive user has authenticated to pasUnity using one of the four methods above they can view the roles they are a member of by navigating to Security > View Roles... from the main menu. The roles that appear in this list are those from pasPortal. This menu option is only visible when security is enabled.
For those authentication methods that use web services authentication is performed with 2048-bit certificates for safe and secure communication.
For instructions on how to enable/disable logon authentication go here.
Copyright © 2024 pasUNITY, Inc.
Send comments on this topic.