Quest Identity Broker (QIB) is a cloud-based single sign on (SSO) solution that enables users to log in to the K1000 Administrator Console or User Console using third-party identity providers, such as your organization's Identity Provider and Microsoft Azure Active Directory.
QIB uses SAML (Security Assertion Markup Language) to authenticate users with third-party credentials. QIB can be configured to automatically create K1000 accounts that enable authenticated users to log in to the K1000 User Console, or to require administrator approval before accounts are created and access is granted. In addition, some identity providers enable integration with social networks, such as Facebook, LinkedIn, Twitter, and others.
If the Organization component is enabled on your appliance, QIB can be enabled for the default organization only. To enable single sign on for multiple organizations, use the standard Active Directory method. See Using Active Directory for single sign on.
You can enable or disable single sign on in the K1000 appliance security settings.
• |
• |
1. |
◦ |
If the Organization component is not enabled on the appliance, log in to the K1000 Administrator Console, http://K1000_hostname/admin, then click Settings. |
◦ |
If the Organization component is enabled on the appliance, log in to the K1000 System Administration Console, http://K1000_hostname/system, or select System in the drop-down list in the top-right corner of the page, then click Settings. |
2. |
3. |
© 2021 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy