Skip to main content
Version: NG-2.15

User Federation

Introduction

We're excited to introduce you to our enhanced authentication methods that provide unmatched flexibility and security for logging into your account. This comprehensive guide will walk you through Lightweight Directory Access Protocol (LDAP) integration, and Active Directory Federation Services (ADFS) integration to ensure your account is safeguarded while offering a seamless login experience.

note

These enhanced authentication features are meticulously designed to cater to your distinct needs. We want to emphasize that they are entirely optional and can be activated according to your preferences and organizational requirements.

LDAP, and ADFS

  1. LDAP Integration: Utilize your existing organizational credentials for streamlined access to your account. Say goodbye to managing multiple sets of credentials and enjoy a seamless login process across systems.
  2. ADFS Integration: For enterprises using Active Directory Federation Services (ADFS), our integration brings the convenience of single sign-on (SSO) capabilities. Simplify logins and improve account security with trusted identity providers.

Key Benefits

  • Simplified Access: Choose the authentication method that suits your preferences and organizational requirements, including traditional credentials, LDAP, ADFS, or MFA.
  • Time Savings: LDAP and ADFS integration eliminates the need for managing different usernames and passwords, saving you time and effort.
  • Enhanced Security: ADFS Integration provides the security advantages of SSO and leverages your organization's established authentication infrastructure.

FAQs

How can IT Administrators integrate LDAP with vuSmartMaps for centralized user authentication?

To integrate LDAP with vuSmartMaps, navigate to Platform Settings > User Federation, click + New Provider, and select LDAP. Fill in the required connection details including vendor, connection URL, bind DN, and bind password. Then configure the domain name and mapping settings. Use the Test Connection and Test Authentication buttons to verify setup before saving.

How can IT Administrators synchronize LDAP users with vuSmartMaps to keep user data updated?

On the User Federation page, use the sync options to "Sync changed users," "Sync all users," or "Remove imported users" to keep user data updated.

What benefits does ADFS integration offer for Security Compliance?

ADFS integration provides single sign-on (SSO) capabilities, allowing users to log in with their existing organizational credentials, enhancing security, and simplifying the login process by reducing the need for multiple passwords.

How can End Users log in using ADFS for a seamless single sign-on (SSO) experience?

Once ADFS is configured, a new login button for the identity provider appears on the vuSmartMaps login page. Click the button, and you will be redirected to your organizational login page. Upon successful authentication, you’ll be logged into vuSmartMaps.

Can IT Administrators disable the LDAP provider after configuring it in vuSmartMaps?

Yes, administrators can enable or disable the LDAP provider using the toggle (radio button) on the User Federation page.

What should I do if I suspect my account has been compromised?

If you suspect your account has been compromised, immediately change your password and report the incident to your system administrator or vuSmartMaps support team for further investigation and assistance.

How can I ensure that only authorized users have access to sensitive data streams containing financial transactions?

Use Role-Based Access Control (RBAC) and define Data Access Policies for roles. For LDAP roles, you can assign permissions by navigating to User Management > Roles, and editing permissions accordingly.

Can I edit or remove LDAP role mappings for users in vuSmartMaps?

LDAP role mappings for LDAP users cannot be removed in vuSmartMaps. You will see an error: "Role Mapping configured in LDAP cannot be removed. Please use LDAP to delete the role mapping." However, you can assign and remove local roles for both LDAP and local users.

How can I import roles from LDAP into vuSmartMaps?

To import roles from LDAP, use the Group LDAP Mapper. It pulls LDAP groups as vuSmartMaps roles and maps them to users. Use a naming convention like "Vunet-" to filter relevant roles for synchronization.

How can I configure periodic synchronization with LDAP?

When adding an LDAP provider, you can enable:

  • Periodic Full Sync – imports all users periodically
  • Changed Users Sync – syncs only updated or new users

You can configure sync intervals in seconds.