Skip to main content

Securosys365 - Authentication

With Securosys365 - DKE you have the following authentication possibilities:

  • Two-factor authentication (Google Authenticator, Free OTP, Microsoft Authenticator, E-Mail) 2FA
  • Support for any OpenID Connect identity provider (Okta, Google Identity, Azure AD, ADFS, Active Directoy, Big-IP F5, Keycloak)

In this guide we will follow the setup of Azure AD identity provider setup.

Login into the Securosys365 - DKE

Login into Securosys365 - DKE

Two-Factor Setup

  • Click on the top right on your E-mail address (red box)
  • Select My Settings
  • Select the Tab Two Factor Login
  • Enable Mobile Authenticator Setup and Scan the QR-Code

Your Securosys365 - Cockpit account login is now 2FA protected.

Identity Provider Setup

Create new Identity Provider

Create new App registration

To create the necessary app registration in Azure, use the sample app in your Azure portal:

Authentication

Add the following URI's under Authentication

Certificate & Secrets

Configure Certificate & Secrets

  • Copy the Client ID and paste into Securosys365 - DKE: Client ID
  • Copy the Value and paste into Securosys365 - DKE: Client Secret

Token Configuration

{
  "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
}

API Permissions

Add the following Microsoft Graph API Permissions

  • Delegated: email
  • Delegated: profile
  • Delegated: User.Read
  • Application: Group.Read.All

Grant Admin Consent for all API Permissions

Test Connection

  • Fill in the required credentials (Application ID, Tenant ID, Client Secret), then click Test Connections.

    A “Test Connection Saved successfully” message will appear.

  • Click Submit.

    The Azure AD Identity Provider is now created.

  • On the grid, find your new Azure AD provider:

    From the Action dropdown, select Enable:

  • Confirm by clicking Yes:

  • The Azure AD provider is now Enabled.

Last updated on