Versions Compared

Old Version 11

changes.mady.by.user Former user

Saved on

compared with

New Version 12

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Section
Column

 

 has a plugable security framework and offers a variety of built-in Security Managers.  The Security Managers supported by are listed below:

Column

On This Page:

Table of Contents

...

  • frevvo Default Security Manager -  is responsible for authentication/authorization and managing users/roles. This is the default option. Your tenant will be created with this security manager if no other choice is selected. If you use the  Default Security Manager, a tenant admin can create users and roles directly in your  tenant.

  • LDAP Active Directory Security Manager - The user is authenticated outside  using LDAP directly. This Security Manager by itself does not provide SSO. For Live Forms In-house customers using Microsoft IIS, SSO is available.

    Note

      When using the  LDAP Security Manager, groups are the equivalent of Live Forms roles.

  • SAML Security Manager - This security manager allows the exchange of authentication and authorization data between an identity provider of your choice (ex:Shiboleth, Okta, ADFS, etc...) and a service provider (frevvo). SSO is supported. Although this security manager can be used on-premise it is primarily meant for cloud tenants who use LDAP but do not want to expose it over the internet.
  • Azure SAML Security Manager - This security manager uses SAML in Authentication Only mode and the Active Directory available in the Microsoft Cloud solution, Azure. Azure AD can integrate with Microsoft AD providing a simple and secure way to access identity managment in the frevvo cloud.

  • Delegating Security Manager - this is the Security Manger needed for Confluence integration.

    Note

    When using the Delegating Security Manager, groups are the equivalent of Live Forms roles.

  • DB Container Security Manager - Authentication is the container's responsibility, but  provides a database interface to fetch users/roles for design time functionality from an external database.   
  • LDAP Container Security Manager - This is exactly the same as the DB Container Security Manager but LDAP instead of DB. Authentication is the container's responsibility. 
  • Custom - Container managed security manager used when there is a requirement for a container to handle authentication.

...

Tenants using the Default Security Manager can be migrated to:
 

  • Default Security Manager → LDAP
  • Default Security Manager → SAML  
  • Default Security Manager →  Azure SAML

Tenants using the LDAP Security Manager can migrate to:

  • LDAP → SAML
  • LDAP → Azure SAML

...