IdP authentication supports standard interactive logins, where a user must supply credentials each time they log in. Federated logins that use network credentials can also be configured.
The Hyland IdP server currently supports authentication using the following methods.
-
Standard OnBase authentication (see the Legacy Authentication Methods module reference guide for details on configuring standard OnBase authentication)
-
WS-Federation (AD FS)
-
CAS
-
SAML2
-
OIDC-Exchange
Some third-party authentication providers use protocols that return a reference to a token instead of the token itself. In these situations, the reference token must be dereferenced before the claims information can be retrieved.
Dereferencing is required with third-party authentication providers that use the CAS protocol or the artifact binding defined in the SAML standard.