Difference between revisions of "Authentication Workflows"

From IVS Wiki
Jump to: navigation, search
Line 1: Line 1:
__TOC__
+
{{Article - Manual | content = <onlyinclude>
{{Article | title = Authentication Workflows | content =
+
<h1>Authentication Methods</h1>  
<onlyinclude>
+
{{Grid 2 - Grid | left = There are three different authentication methods that can be used for VALT.
There are three different authentication methods that can be used for VALT:
 
  
<b>
+
#Local
*Local Authentication
+
#LDAP/LDAPS
*LDAP Authentication
+
#SSO
*SSO Authentication
+
| right =
</b>
+
{{Aside | content = Any combination of these can be implemented and used at the same time.}}
 +
}}
  
 
{{hr}}
 
{{hr}}
  
<h2>Local Authentication</h2>
+
{{Manual lvl 2 | title = Local Authentication | content =
Local accounts are created and assigned to groups within VALT. Local accounts can be created manually or imported from a [[Importing_Users_from_a_file|list]].
+
Local accounts are created and assigned to groups within VALT. Local accounts can be created manually or imported from a [[Importing_Users_from_a_file|list]].}}
  
 
{{img - resize | file = auth_local.jpg}}
 
{{img - resize | file = auth_local.jpg}}
Line 19: Line 19:
 
{{hr}}
 
{{hr}}
  
<h2>LDAP Authentication</h2>
+
{{Manual lvl 2 | title = LDAP Authentication | content =
LDAP accounts can be imported manually using an LDAP search and lookup tool within the software or imported automatically on a schedule based on group.
+
LDAP accounts can be imported manually using an LDAP search and lookup tool within the software or imported automatically on a schedule based on group.}}
  
 
{{img - resize | file = auth_ldap.jpg}}
 
{{img - resize | file = auth_ldap.jpg}}
Line 26: Line 26:
 
{{hr}}
 
{{hr}}
  
<h2>SSO Authentication</h2>
+
{{Manual lvl 2 | title = SSO Authentication | content =
SSO accounts are automatically created when a user logs in for the first time. The user can be placed in the proper group automatically upon login by mapping SSO attributes to a user group within VALT.
+
SSO accounts are automatically created when a user logs in for the first time. The user can be placed in the proper group automatically upon login by mapping SSO attributes to a user group within VALT.}}
 
 
*VALT's SSO uses <b>Just-In-Time (JIT) Provisioning</b>.
 
**<em>Users are reevaluated and assigned to groups each time they log in, based on a [[Single_Sign-On_(SSO)#User_Mapping | group membership]] attribute being passed.</em>
 
*If a user does <u>NOT</u> have a user mapping associated with their account, the user gets moved to "<b>Users without Group</b>" and has restricted access.
 
*If a user's user mapping changes, they will be moved to the correct group upon their next SSO sign-in.
 
**<em>Correct mapping is based on the SSO mapping created in VALT and the attribute/pair value being passed from the IdP.</em>
 
 
 
{{hr - 2}}
 
  
{{img - resize | file = SSO Flow Chart.png}}
+
<center>{{img - resize | file = SSO Flow Chart.png | width = 600px}}</center>
  
</onlyinclude>
+
{{Top of Page}}
 
+
</onlyinclude>}}
{{hr}}
 
 
 
[[VALT SSO| &#x293A; Back to VALT SSO Main Page]]
 
}}
 

Revision as of 09:38, 25 June 2026

Authentication Methods

There are three different authentication methods that can be used for VALT.

  1. Local
  2. LDAP/LDAPS
  3. SSO
Any combination of these can be implemented and used at the same time.

Local Authentication

Local accounts are created and assigned to groups within VALT. Local accounts can be created manually or imported from a list.

Auth local.jpg

LDAP Authentication

LDAP accounts can be imported manually using an LDAP search and lookup tool within the software or imported automatically on a schedule based on group.

Auth ldap.jpg

SSO Authentication

SSO accounts are automatically created when a user logs in for the first time. The user can be placed in the proper group automatically upon login by mapping SSO attributes to a user group within VALT.

SSO Flow Chart.png

⇧ Back to Top
Retrieved from "https://ivs.help/wiki/index.php?title=Authentication_Workflows&oldid=17668"