Authentication mode

Based on the way user records are managed, it is possible to choose the most appropriate authentication modes for each scenario. The authentication modes available in the system can be classified into three groups, as shown in the image:

It is possible to use the three authentication groups together by selecting one option from each group. However, SAML 2.0 can be used in conjunction with OpenID Connect.

caution

⚠️ Attention:

• Authentication modes depend on the domain configuration in the system and are only relevant if there are users synchronized with a directory service.
• "Internal" authentication is recommended only for users registered internally, and does not apply to users synchronized with the directory service.
• Authentication with username and password into a directory service (NTLM v2 or LDAP) is suitable for when the SoftExpert Suite server and the authentication service are in the same domain.
• The choice between SAML 2.0 and OpenID Connect depends on the specific requirements of the organization and the applications being used. SAML 2.0 is more structured and secure, while OpenID Connect is simpler and lighter.

Remember to consider this information when defining authentication modes. For authentication in SoftExpert Suite, it is important to highlight that both SAML 2.0 and OpenID Connect support authentication of internal users and external users as well.