Security Agent

The security agent provides two principal services.

• Synchronise users, groups and user information from identity systems such as Active Directory.

• Authenticate users when they access the end user apps.

Synchronisation is provided by a series of plug-ins and Aiimi provide several out of the box. At the time of writing these are: Active Directory, Azure Active Directory, OpenText Content Server and Aiimi Insight Engine Built-In Accounts. Aiimi, our customers and partners can create custom security plugins using the Microsoft.NET framework. The only limitation is the the given user must be the same across all security repositories.

Synchronisation runs periodically, defined by a schedule. This will generally, run once a day usually overnight. It can run more or less frequently if you wish. The time taken from synchronisation to complete will depend on the numbers of users and groups.

User authentication is handled by an API call the security agent exposes. This is then called by the gateway layer (end user apps do not call this directly). Single sign-on options are available and users are not prompted for credentials. A call is still made to the security agent to fetch the user’s details.