Use Windows Authentication to authenticate objects, services and users. It will help verify how genuine an object is and for services and people that the credentials are authentic.
Check the Windows Authentication checkbox to enable or disable Windows Authentication.
SAML2 is an open standard that allows single sign-on (SSO) fo applications. It is used to authenticate a user and allow them to gain access to Aiimi Insight Engine.
Check the SAML2 Authentication checkbox to enable or disable Windows Authentication.
Enter the Application Identifier for the Identity Provider.
Enter the issuer of the Identity Provider.
Enter the endpoint URL for signing in to the authenticator into Sign On URL.
Enter the endpoint URL for logging out of the authenticator into Logout URL.
Enter the endpoint for Aiimi Insight Engine Search application that will complete the login.
Use {0} as a placeholder for the host and port to access the API.
Enter the public certificate to validate the token signatures within Signature Validation Certificate.
Aiimi Insight Engine supports ADFS for single sign on. A private key needs to be generated and network changes are required before ADFS is enabled. The copy of the certificate will need to be added to each server running IIS and hosting Aiimi insight Engine.
Check Enable ADFS Authentication use ADFS.
Specify the ADFS URL.
Enter your Redirect URL
Specify the Certificate Path for the certificate/private key.
Enter the password to your certificate within Certificate Password.
These setting impact the safety, security and integrity if your system. Proceed with caution.
You can get information about your APIs during development and testing. This exposes your API details and should only be enabled in dev or test environments. To use Swaggers inbuilt testing the Bearer Token Authentication must be enabled.
Allow tokens to be stored in an auth header not just HTTP. This increases your security risk and should only be enabled in dev or test environments. This must be enabled to use Swaggers inbuilt testing.
If enabled, logged out tokens will only be invalidated upon expiry. This is only recommended for dev or test environments.