Archive for English

X.509 Certificate generation and keygen

English on March 25th, 2020 No Comments

Background: In SSOCircle Public IDP we provide client certificates as a mean of strong authentication. For more than 10 years we offer PKI functionality to ease the generation of private/public key pairs as well as generate and enroll X.509 certificates. In the past most browsers supported

Tags: , , ,

Certificate enrollment with #PKCS10 signing requests

English on July 24th, 2019 No Comments

Author: Ming Yu This is a step-by tutorial focusing on how to log in with a X.509 certificate to SSOCircle IDP instead of using username password (REM: the process described here is not related to the use of certificates in SAML SSO). The tutorial uses Chrome browser and Windows OS. 1. Log in with your […]

Tags: , ,

Impressions from European Identity & Cloud Conference 2019

English on May 30th, 2019 No Comments

Going deep on Decentralized Identity (DID) and Artificial Intelligence, as they turned out to be the main topics of KuppingerCole European Identity Conference 2019 (EIC19), which was held in Munich from 14th-17th of May 2019. The leading Identity and Access Management event in Europe attracted almost 1.000 visitors and a growing exhibitors area expanding over […]

Tags: , , , , ,

Impressions from European Identity & Cloud Conference 2018

English on May 22nd, 2018 No Comments

Technology meets Legal, Standards meets Best Practices, Vision meets Reality. All this happens when KuppingerCole Analysts calls together the Identity Community to meet at the 12th European Identity and Cloud Conference (EIC) in Munich from 15th-18th May 2018. It is the leading Identity and Access Management event in Europe and probably in the world with […]

Tags: , , , , ,

2017/09/24: Service Provider expiration and quotas now enforced

English, Ticker on September 24th, 2017 No Comments

Starting at 2017/09/24 we are now enforcing quotas and expiration for imported SAML Service Providers as mentioned in the Comparison Pricing List. Default of Expiration for SAML Service Providers is 30 days. From that point on, SSO to the services will not work anymore. The first expiration date for old Service Providers will be 2017/10/24:06:00:00 […]

SAML SSO to Amazon AWS from SSOCircle

English on September 19th, 2017 No Comments

Many people were asking about doing SSO to Amazon AWS from SSOCircle. Since SSOCircle Public IDP has a common Circle of Trust the Service Provider EntityIDs are shared and must be unique. AWS provides a single SAML Service Provider Metadata file at https://signin.aws.amazon.com/static/saml-metadata.xml for all AWS customers. As the AWS SP is already imported into […]

Tags: , , ,

Impressions from European Identity & Cloud Conference 2017

English on May 19th, 2017 No Comments

No new standards, no protocol declared dead – but new compliance directives which have huge impact on business practices and deployed IAM services. The General Data Protection Regulation (GDPR) and the Revised Directive on Payment Services (PSD2) will be applied in 2018 after a two-years transition period. From the importance of establishing a legal identity […]

Tags: , , , , , , ,

Relationship Based Access Control in IoT and User Managed Access

English on April 25th, 2017 No Comments

Relationship Based Access Control (ReBAC) models originate from access control considerations made for Online Social Networks (OSN). In original ReBAC studies User-to-User (U2U) relations determine the access control decision made whenever a user (accessor) tries to access a resource. Policies typically evaluate the type, depth and strength of the U2U relation between the accessor and […]

Tags: , ,

Next Generation Identity and Access Management

English on April 6th, 2017 No Comments

SSOCircle recently introduces a Graph based identity management system with user manageable access permissions and an entitlement API. Enter ReBAC (Relationship Based Access Control. Add ReBAC to ABAC (Attribute Based Access Control) and RBAC (Role Based Access Control) and get StarBAC. ReBAC can be described by the explicit tracking of relationships between identities themselves and […]

Tags: , , , , , , , , ,

Configuration and Metadata Certificate Changes

English on August 7th, 2016 No Comments

Applies to the Public IDP. Not to our IDPee offerings. Update: Public IDP Metadata will be replaced during a maintenance window at the weekend of 13/14th August 2016. We do not expect downtime but there may be some changes needed at your service provider. SSOCircle Root CA certificate used for client certificate authentication will also […]

Tags: , , , ,