KnowHow supports multiple source for Authentication and 4 different kind of roles for Authorization. `
Authentication
On the Login screen, the user can select Standard login with credentials or AD login to authenticate him/her-self
...
login with SSO
KnowHOW Login
Any individual can self-sign on a KnowHow instance. You can use the login page to register a user specifying user name, password, and email. Once Ad provider is configured, KnowHOW login can be disabled from setting in KnowHOW.
...
SSO Login
A user using a default Superadmin user or with a SUPERADMIN role can configure AD server details on the KnowHOW instance.
...
Upload AD certificate via Setting section in KNowHOW.
| View file | ||
|---|---|---|
|
...
Go to settings from the sandwich icon on the top right corner
...
Under "Misc. Settings" tabs go to AD settings
...
Provide the AD server details mentioned
Bind Username (used to create a bind and validate the users)
Bind User Password
Root Distinguished Name: Root path of AD tree under which users are being searched on AD server (eg: DC=company,DC=com)
AD Host - URL used to connect to the server using LDAPS
AD Port - port for AD (Eg: 639)
Domain - AD domain under which users are registered (eg: testuser@company.com → Domain: http://company.com )
...
After configuring the AD details click on save, restart the customAPI container
...
User can login to knowhow using work email to authenticate.