You can connect your Kordiam planning tool with Single-Sign-On (SSO) services. This means that users can authenticate with Kordiam using their existing credentials from an Identity Provider using the SAML protocol.
General Info
Kordiam acts as a Service Provider (SP) and communicates with an Identity Provider (IdP) using the SAML protocol.
The SP is responsible for requesting and receiving authentication assertions from the IdP, while the IdP is responsible for authenticating users and providing the necessary assertions.
Kordiam supports integration with multiple Identity Providers, including:
- MS Entra ID (former Azure AD),
- Microsoft Active Directory (ADFS),
- Okta
- as well as Google SSO.
Additionally, a customer of Kordiam integrated a SSO-authentication system called OneLogin. Usually, when the connection with Okta is supported, logging in with this solution does work, too. OneLogin can connect to true SAML 2.0 or OpenID (and others).
For Azure AD, ADFS and Okta, two different modes can be activated:
-
Fail-save: Freelancers and Kordiam admins can still access Kordiam using their email address.
-
- This mode serves on the one hand as a safety net in scenarios such as SSO service interruptions. Administrators can use their email credentials to log in, allowing them to resolve issues or make necessary adjustments (for example, temporarily disabling SSO).
- On the other hand this mode also allows freelance users to log in using their email addresses as they are usually not registered within the internal SSO environment.
-
-
Strict-rule: Access to Kordiamis strictly restricted to Active Directory users.
-
- Only individuals with Active Directory credentials can use SSO for authentication and access Kordiam. The strict rule enhances security by limiting access to authenticated users, ensuring that only authorized personnel can utilize DKordiam via the SSO integration. If there is a need to temporarily deactivate SSO during a SSO service interruption, such action needs to be carried out by KordiamSupport.
-
Comments
0 comments
Please sign in to leave a comment.