Authentication Settings Configuration

Authentication Settings Configuration refers to the process of defining and customizing authentication mechanisms within a system or application. It involves configuring various authentication methods, settings, and security protocols to control user access and verify their identities during login or access attempts.

Accessing the Authentication Settings Configuration Settings

New Menu Old Menu
In the Platform module, from the navigation pane on the left, under ACCESS MANAGEMENT, select Authentication settings.

The Settings :: Authentication page is displayed with the Authentication settings tab open by default.
  1. From the main navigation menu, click Settings.
  2. On the Settings page, from the left menu, select General > Authentication.

    The Settings :: Authentication page is displayed with the LDAP tab open by default.

  3. Click the Authentication settings tab.
For more information on how to switch between menus, click here.

Access Management: Configuring Authentication Settings

In addition to configuring authentication settings, AppViewX also lets you enable birthright provisioning for new users, configure the order in which user credentials are authenticated, enable/disable an authentication check, and other user and node settings.

To configure the authentication settings:

  1. On the Settings :: Authentication page, under the Authentication settings tab, to enable Birthright provisioning for new users who log into the system with a predefined set of permissions (associated with the user group), turn on the Enable Birthright toggle.
    To do this, the admin should select the user group (Assigned with the defined permissions), which will act as a default user group for all the users logging in to AppViewX. Fore more details, refer to the content on creating a role and associating it with a user group.
  2. To define the order in which the authentication settings will be checked, in the Order section, drag and drop the authentication labels to the required corresponding levels.
    If the level 1 check is set to Local and the level 2 check is set to LDAP, user credentials will be authenticated locally first and then on the LDAP server.
    Note: You can also disable, and then enable a level of authentication. To do this, click the green tick next to the server name.
  3. In the User settings section, enter the required field information.
    Table 1. Field descriptions for User settings
    Field Description
    Create User with an unique E-mail ID To ensure that every AppViewX user has a unique email ID, turn on this toggle.
    Create User on Authorization Failure To create a user even if authorization fails (but the user is authenticated successfully), turn on this toggle.
    Exclude domain name from User name To exclude the domain name from the username during SSO or LDAP logins, turn on this toggle.
    Idle Session Timeout Users can enter the idle web session timeout limit in minutes. AppViewX lets you set a session timeout limit between 2 and 480 minutes.
    Enable Max Session Timeout Enable the toggle to enter the max session timeout duration, which will force the session to expire even if idle time never expires.
    Max Session Timeout This field appears only when the Enable Max Session Timeout toggle is turned on.

    AppViewX lets you set Max Session Timeout limit between 100 and 7200 minutes. To set a max session timeout limit, enter the value in minutes.

    Note: The session timeout expiration notification appears 4 minutes and 1 minute prior to the session's expiration.
  4. If the AppViewX node password is updated, in the Node Settings section, enter the updated Node Password.
    Note: The value entered in the Node Password field should be the same as the node password. To apply the changes, restart the avx-config-server pod in every datacenter.
  5. Click Save.