...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

1. The Http Auth Credentials section is at the bottom of the Edit/Add tenant screens and is initially collapsed. Click the icon to expand it.
2. Enter the scheme from the dropdown. The admin may enter multiple credentials by clicking the icon. Each should be for a unique scheme/host/port/realm. The supported options are:

   1. Basic - a common HTTP Authentication protocol that  assumes that client credentials consist of a username and a password where the latter is a secret known only to you and the server

   2. NTLM - a Windows network authentication protocol that allows a client to prove its identity without sending a password to the server.

3. Scheme, host, user name and password are required.

4. Port is optional and may be left blank. Either blank or -1 equates to any port and the system will alter blank to be -1.

5. All fields are specified in plain text and not encoded in any way.

6. Domain is only generally used for NTLM.

...

Configuring the SAML Security Manager

Creating/editing the SAML tenant is performed by the superuser (on-premise) or the tenant admin (cloud). Refer to the SAML Security Manager topic for the details.

Configuring the Azure SAML Security Manager

...

• Admin User Id - This is the tenant admin id. It can contain characters, numbers and the underscore. It cannot start with a number. The maximum length is 16 characters. This account is used as the built-in admin if you are using the LDAP, SAML or Azure Security Managers.
• Admin User Password - This is the tenant admin password. Notice the text will appear as bullets as you type.
• Reenter the Admin User Password - Reenter  the tenant admin password.  will display an error message, "Invalid Value" if what you type in this field does not match the contents of the Admin User Password field. This is one way to change the password for the built-in admin if you are using the LDAP, SAML or Azure Security Managers.
• Change password on next login - Tenant Admins can expire passwords by checking this field. The tenant admin will be prompted to change their password the next time they login.
  
  
• Enter the Email Address for the user id specified in the Admin User Id (built-in admin) field. The tenant admin receives an email with a link if they use the Forget Password? feature to reset their password.

Built-in admin for LDAP, Azure and SAML Security Manager tenants

A Tenant admin can login directly to Live Forms or login with a user id who has been given tenant admin permissions in your Active Directory. Tenants using the LDAP(s) Security Manager now have the ability to configure a built-in admin account. This was not possible for this Security Manager in previous releases.

...

Definitions of Password Strength:

• none - uses system default, enforces a minimum password of 8 characters
• Fair - very guessable: protection from throttled online attacks. (guesses < 10^6) Strength meter will indicate "Very weak."
• Good - somewhat guessable: protection from unthrottled online attacks. (guesses < 10^8) Strength meter will indicate "Weak."
• Strong - safely unguessable: moderate protection from offline slow-hash scenario. (guesses < 10^10)
• Very Strong - very unguessable: strong protection from offline slow-hash scenario. (guesses >= 10^10)

A user creating or resetting their password will be required to meet the password strength specified by the tenant admin. Password strength is indicated as the user types by a Password Strength Meter visible below the entry. There are no specific length or character requirements, but the meter will detect the strength of the password based on use of uncommon words or phrases and unpredictable use of capitalization, numbers and special characters. Helpful suggestions appear to prompt the user towards a stronger password. Password length is limited to 100 characters and an error message will appear if user attempts to enter more than 100 characters. Users cannot use their old password or a temporary password as the new password. Here are screenshots of what a user might see if the Tenant Password Strength is set to "Strong." Strong and Very Strong passwords use uncommon words or phrases and unpredictable use of capitalization, numbers and special characters.

...

1. Click the Manage Roles link.
2. You will see several pre-created roles: frevvo.Designer, frevvo.Editor, frevvo.Publisher, frevvo.ReadOnly.
3. Click the  icon, fill in the form and submit it to create new roles e.g. Employee or Manager.
4. Click the Back to Manage Tenant link.
5. Next click the Manage Users link.
6. For  In-house you will see a single user – the administrative user you defined when you created the tenant. Note that you will have to click the link to display All users. By default, only users beginning with the later A are displayed. For Online you will see two users – the administrative user and the designer username you specified when you signed up for your trial SaaS account.
7. To create a new user with permissions to create forms, click the  icon, fill in the form and select the role frevvo.designer. If you do not select this role then this new user will not be able to create forms but will only be able to use forms created by others.
8. The new user will be created. Create as many users and assign them roles as needed.
9. Logout of the tenant admin account and login as one of the newly created users with the frevvo.Designer role and start building forms and workflows.
10. Note that you must login using either the syntax: userid@tenant for the user name. For example, if the newly created tenant was named example.com then all users in that tenant must login using the ID: user@example.com. If you prefer to enter the username and tenant name in their own login page input fields, the configuration parameter, frevvo.login.show.tenant, can be modified to display the tenant name input field.  

Tenant Configuration

A tenant admin can view all the configuration properties that apply to their tenant. Some of these properties can be modified by the tenant admin in the Edit Tenant page. Others can only be changed by the superuser admin.

Image Added

Related Topics

User Authentication

...