Authentication Management

CentricMinds supports integration with an LDAP compliant data source, such as Microsoft Active Directory and OKTA.

Book a demo
Authentication Management

Featured
Cloud Intranet Software
Team Communication
Employee Engagement
File Sharing & Management
Document Management Software
Intranet For Office 365
Internal Communications
Team Collaboration
Digital Asset Management
Digital Experience Platform
Integrations
Workflow Management
Form Management
Task Management
Event Management
Team Management
Extranet Management
Customer Relationship Management
Metadata Management
Authentication Management
Intranet Analytics
Security, Compliance & Hosting
Accessibility
Personalization
Support for organizations of all sizes
Enterprise Search
Enterprise Social Networking

User Synchronization

This background task will connect to and synchronize user information from LDAP into CentricMinds (based on a defined position within LDAP or a desired search criteria). The sync adds, modifies and/or deletes user accounts within CentricMinds as needed.

Authentication

When an individual user attempts to authenticate with CentricMinds, that authentication can be performed against an LDAP data source. After successful authentication, a synchronization of that user's information is performed.

During a synchronization of a user's information into CentricMinds, the following is supported:

  • User details: Retrieving standard user information such as username, first name, last name, email address, phone number, mobile number, date of birth and manager.
  • Group associations: Retrieving group associations and creating and associating groups with the same name within CentricMinds.
  • Additional details: Retrieving additional and/or custom information and adding it as metadata associated with the user.

This has made it possible for organizations to use an LDAP data source as a 'source of truth' for user information and provide access to CentricMinds content in a structured and automated way. It has also made it possible to support user personalization and automated subscription and/or notifications, by matching content-based metadata against synchronized user metadata.

Flexible Authentication Model

CentricMinds provides a flexible authentication model which includes support for the following approaches:

  • Traditional Authentication: CentricMinds provides 'out of the box' support for the internal storage of user accounts and their associated authentication. User information is stored within the CentricMinds database.
  • LDAP Authentication: CentricMinds provides 'out of the box' support for authentication with a LDAP compliant data source such as Microsoft Active Directory. The data source will remain the 'source of truth' and all authentication attempts via CentricMinds will include communication and verification with the data source. Information (included security group and role associations) is synchronized and used by CentricMinds.
  • Mixed Mode Authentication: A combination of Traditional and LDAP Authentication; which first tests against an LDAP compliant data source followed by an authentication attempt against CentricMinds (in the event that the LDAP authentication fails). This provides the ability to support internal authentication of staff, but also support authentication of external users (who do not have an LDAP account) as needed. This brings greater flexibility in supporting user authentication across varying target audiences who are working across different domains.
  • External Authentication: CentricMinds also provides the ability to perform authentication against external systems (via HTTPS requests) or external databases (via direct data querying).

Single Sign On

CentricMinds provides support for Single Sign-On (SSO). SSO is an approach to access control of multiple, related, but independent software systems. With this approach a user logs in once and gains access to all systems without being prompted to log in again at each of them. CentricMinds supports the following:

  • SSO Basic: CentricMinds supports a basic approach to SSO using the browser's ability (via NTHMLv2) to retrieve the username of the user currently logged into Windows (i.e. within a domain). When the site is accessed, the user will be silently logged into CentricMinds via their Windows user account.
  • SSO Advanced: CentricMinds supports an advanced approach to SSO (which will work with all browsers) and makes use of Microsoft Active Directory Federation Services (ADFS). When CentricMinds is accessed, a secure ADFS token is checked for authentication information. If one exists, the user will be silently logged into CentricMinds. If a token does not exist, the user will be directed to login via ADFS and then passed back accordingly.

Active Directory

Connect with your AD environment, extend user profiles with our tools and provide a seamless login with SSO.

Access to Intranet software like CentricMinds is typically driven by security repositories, with Active Directory being the most common.

Uniquely CentricMinds provides its own security management environment which can be either integrated with Active Directory, or operate as a standalone environment where the creation and authentication of users is managed within CentricMinds.

Users, Groups and Roles Security Model

CentricMinds supports a Users, Groups and Roles security model. Users are also viewed as resources within CentricMinds and as such can be readily shared and used in the same manner as content. This provides unique and powerful ways of displaying content associated with staff within the Intranet. Users are classified based on their function, namely:

  • Site Users (readonly access)
  • Authors / Approvers (read & write access)
  • Organisational Unit Managers
  • Global Administrators

Active Directory Integration

CentricMinds provides two key points of integration with an LDAP compliant data source (e.g. Microsoft Active Directory):

User Sync

A background tasks that connects to and synchronizes a user’s information from LDAP into CentricMinds.

Authentication

When an individual user attempts to authenticate to CentricMinds, that authentication can be performed against LDAP.

Authentication

CentricMinds provides a flexible authentication model, which includes support for the following approaches:

Traditional Authentication

CentricMinds provides ‘out of the box’ support for the internal storage of user accounts and their associated authentication. User information is stored within the CentricMinds database.

LDAP Authentication

CentricMinds provides ‘out of the box’ support for authentication with a LDAP compliant data source (e.g. Microsoft Active Directory). The data source will remain the ‘source of truth’ and all authentication attempts via the CMS will include communication and verification with the data source. Information (included security group and role associations) is synchronized and used by the CMS.

Mixed Mode Authentication

A combination of Traditional and LDAP Authentication; which first tests against an LDAP compliant data source (e.g. Microsoft Active Directory) followed by an authentication attempt against the CMS (in the event that the LDAP authentication fails). This provides the ability to support internal authentication of staff, but also supports authentication of external users (who do not have an LDAP account) as needed. This brings greater flexibility in supporting user authentication across varying target audiences.

External Authentication

CentricMinds also provides the ability to perform authentication against external systems (via HTTPS requests) or external databases (via direct data querying).

Single Sign On

CentricMinds provides support for Single sign-on (SSO). SSO is an approach to access control of multiple, related, but independent software systems. With this approach a user logs in once and gains access to all systems without being prompted to log in again at each of them.

CentricMinds supports the following:

SSO Basic

The CMS supports a basic approach to SSO using the browser’s ability (via NTLMv1 or NTHMLv2) to retrieve the username of the user currently logged into Windows (i.e. within a domain). When the site is accessed, the user will be silently logged into the CMS via their windows user account.

SSO Advanced

The CMS supports an advanced approach to SSO (which will work with all browsers) and makes use of Microsoft Active Directory Federation Services (ADFS). When the Intranet is accessed, a secure ADFS token is checked for authentication information; if one exists, the user will be silently logged into the CMS, if one does not exist, the user will be directed to login via ADFS and then passed back accordingly.

Download on the App Store
Get it on Google Play
Book a demo

Packed with extra features

Cloud Intranet Software

Cloud Intranet Software

Team Communication

Team Communication

Employee Engagement

Employee Engagement

File Sharing & Management

File Sharing & Management

Document Management Software

Document Management Software

Intranet For Office 365

Intranet For Office 365

Internal Communications

Internal Communications

Team Collaboration

Team Collaboration

Digital Asset Management

Digital Asset Management

Digital Experience Platform

Digital Experience Platform

Integrations

Integrations

Workflow Management

Workflow Management

No items found.

Simplify Communication and Collaboration Today!

Keep your team in sync, no matter where they are. Our powerful intranet software streamlines communication and collaboration.

Book a demo
Start TRIAL

Want to boost your team's productivity and communication?

Learn more about how CentricMinds Intranet can help you unify all your work with everyone in one single place.

Talk with Sales
FREE TRIAL

Explore more with CentricMinds

Features

Features to improve productivity, engagement and experiences

View Features

Articles

Discover Expert Articles on how you can get the best out of CentricMinds

Read Articles

Whitepapers & Videos

Watch videos or download whitepapers to learn more

Download WhitepapersWatch Videos

Solutions by Industry

Solutions to meet your unique industry needs

IndustriesUse Cases (need a landing page)

Products

Intranet
File Sharing & Management
Branded Employee App
Internal Comms Software
Digital Asset Management
Content Cloud
Forms
Tasks
Workflow
Intranet for Google Workspace
Intranet for Office 365
Website & Extranet Portal
Explore Intergrations
Features

Industries

Education, Schools & Universities
Financial Institutions
Government
Healthcare & Hospital
Communications & Media
Mining & Energy
Retail
Professional Services
Charities & Non-Profit Organizations
Manufacturing & Construction

Company Size

Mid-Size Businesses

Teams

HR
Marketing
IT
Executive

Use Cases

KiT. Kmart Australia’s Intranet
Sonic HealthPlus
Country Fire Service
Virtus Health (ASX: VRT)
Sun River Health
Regis Healthcare Ltd (ASX: REG)
More customers

Resources

Articles
Glossary
CentricMinds TV
Video Library
White Papers
Download Apps
Developers
University

Company

About Us
Why CentricMinds
Contact Us
Start a Free Trial

Read why our customers selected CentricMinds

Read reviews
G2 High Performer Fall 2023
G2 High Performer Asia Pacific Spring 2023

Download CentricMinds Employee App

Available for iOS or Android
Download on the App Store
Get it on Google Play
CentricMinds
Copyright © 2024 CentricMinds. All Rights Reserved.
Privacy Policy