Authentication

Forcepoint ONE Platform administrators can select from Local, LDAP, or SAML identity providers.

Use the Authentication drop down to select from available providers.

Steps

  1. Sign in to Forcepoint ONE Platform.
  2. On the upper-right corner of the page, click the Settings icon.
  3. Navigate to IDM > Authentication.


  4. Toggle Always check for local user to either enable or disable to allow authentication using local user.
  5. From the Default Identity Provider drop-down, select the identity provider from the drop-down.
    Available options are:
    • Local - Select the Local option to add and manage users locally inside Forcepoint ONE Platform.
    • LDAP - Select the LDAP option to setup Active Directory sync to provision and to authenticate users.
    • SAML - Select the SAML option to leverage SAML 2.0 user authentication against an already deployed IAM product which provides Single Sign-On (SSO). Authentication requests for users in the configured domain are sent to the Identity Provider (IdP).

      Forcepoint ONE Platform auto-creates user upon successful SAML authentication to an external IdP. The tenant administrator can then assign any particular role to the created SAML user.

  6. If LDAP or SAML is selected, you need to also provide specific service in the IDP drop-down.