Create a New Authentication Profile
Authentication Profile | |
Fields | Description |
Name |
Specify a unique name for this authentication profile, i.e. My SigningHub Authentication. This name will be displayed at the login screen of SigningHub Desktop Web. |
Description | Specify any description related to this authentication profile for your record. |
Method | Select the authentication method (i.e. Email/ Password Authentication, Mobile Authentication, Active Directory Authentication, Google, Salesforce Authentication, IDfy Authentication, itsme, etc.) for this profile. |
Connector |
This field will appear to select the related connector, when you select any third-party authentication method above. Click to view the details of the selected connector. See details as how to create a new connector. The "Email/ Password Authentication" and "SSL Client Authentication" methods don't require any third-party authentication method, and therefore the "Connector" field is not shown for them. |
Details | In case you select the "Active Directory Authentication" method, the "Details" fields will appear in addition to the "Connector" field to specify the "Fully Qualified Domain Name" and "Allowed Groups" information. The "Fully Qualified Domain Name" field refers to the complete domain name that has been configured by your IT Administrator and consists of all the domain users, i.e. mySigninghub.com. The "Allowed Groups" field refers to the (comma separated) authorised security groups in your Active Directory (i.e. Sales, Marketing, Accounts, etc.) that are used for provisioning in SigningHub, see details. If the "Allowed Groups" field is left blank, then all the domain users would be able to authenticate by using this authentication profile. |
Active |
Tick this check box to make this authentication profile active. Only the active profiles are available to the end users on their Login screen and Integration screen of SigningHub Desktop Web for authentication.
|
Private |
Tick this check box to mark this authentication profile as private. A private profile will not be available to the (public) end users on their Login screen and Integration screen of SigningHub Desktop Web. Private profiles from here will be available in the "Settings" tab of service plan configuration, and are specifically used for the corporate logins on SigningHub Desktop Web. You can associate any supported external Identity Provider (i.e. BankID, Active Directory, Google, etc.) as required with a private authentication profile to make it exclusive for a corporate. |
Validate client certificate |
This check box will only appear when you select the "SSL Client Authentication" method. Tick it if you want SigningHub to validate the users' certificates every time they use them for authentication. In this way, the users with expired or revoked certificates will not be able to log into SigningHub Desktop Web.
|
Required password authentication |
This check box will only appear when you select the "SSL Client Authentication" method. Tick it if you want SigningHub to ask for SigningHub ID password as well from a user, when they choose their SSL certificate (from the list) for system login. This will work as two-factor authentication, where users will have to first select their certificate and then provide their SigningHub ID password to log into SigningHub Desktop Web. In case a user does not have their SigningHub password, they will be asked to activate their account to set a SigningHub password by following the activation email steps. |