Adding third party identity providers
Both RADIUS and OIDC can be used as second factors in all applications. To enable these factors, third-party providers need to be configured within the Broker configuration.
An LDAP connection is necessary to automate importing users for Opt-in policies or to configure an external source for Administrators and Support Operators. Once a server with a base DN is configured, a new option will appear within the Application's advanced configuration.
Adding Radius Server
To add an external RADIUS provider:
- Go to Settings and enable the switch next to "RADIUS."
- Enter the necessary data and click Save next to each value.
- To test the connection, enter the credentials for testing and click TEST.
Adding LDAP Server and remotely authenticated operators
To add an LDAP server connection:
- Go to Settings and enable the switch next to LDAP.
- Enter the required values and click Save next to each input field.
- To test your configuration, click TEST next to "Connection test."
You can configure the Broker to fetch administrator accounts from relevant places in the LDAP directory tree, allowing you to set up remotely authenticated accounts for:
- Superadministrators
- All apps administrators
- All apps helpdesk (support)
Here is the edited version with improved clarity and grammar:
Both RADIUS and OIDC can be used as second factors in all applications. To enable these factors, third-party providers need to be configured within the Broker configuration.
An LDAP connection is necessary to automate importing users for Opt-in policies or to configure an external source for Administrators and Support Operators. Once a server with a base DN is configured, a new option will appear within the Application's advanced configuration.
Adding a RADIUS Server To add an external RADIUS provider:
Go to Settings and enable the switch next to "RADIUS." Enter the necessary data and click Save next to each value. To test the connection, enter the credentials for testing and click TEST. Adding an LDAP Server and Remotely Authenticated Operators To add an LDAP server connection:
Go to Settings and enable the switch next to LDAP. Enter the required values and click Save next to each input field. To test your configuration, click TEST next to "Connection test." You can configure the Broker to fetch administrator accounts from relevant places in the LDAP directory tree, allowing you to set up remotely authenticated accounts for:
Superadministrators All apps administrators All apps helpdesk (support)
Additionally, you can configure how often LDAP is synchronized with the Broker. By default, this is set to 60 minutes. The Broker will inform you when this timer is exceeded.
Adding OIDC Server
To add a new OIDC provider:
- Enable the switch next to OIDC in Settings.
- Fill out the required input fields and upload the TLS Certificate.
- To test the configuration, click TEST next to "Connection test"