Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This questionnaire assists in initializing the Ocean’s identity provider.

...

Tip

To fill out the form, open a new support ticket in JIRA, “New feature request” and select “Setup for Ocean’s Identity Provider” category. You will get a table template you see below which you can edit.

Summary: Setup for Ocean’s IdP: Company_nameYou will get table template you see below which you should fill out.

Configuration Template

INSTANCE DETAILS

Company name

Type in your name

Brand name

Type in your brand

EXTERNAL IDENTITY PROVIDERS
Social Logins (ex: Facebook, Google, …)

Operator app

YES/NO

If YES, type which ones: Facebook, Google, …

*Driver app

YES/NO

If YES, type which ones: Facebook, Google, …

Fleet manager app

YES/NO

If YES, type which ones: Facebook, Google, …

Identity Brokers (ex: Azure, Okta, Keycloak, Auth0, …)

Operator app

YES/NO

If YES, type which ones: Azure, Auth0 …

*Driver app

YES/NO

If YES, type which ones: Azure, Auth0 …

Fleet manager app

YES/NO

If YES, type which ones: Azure, Auth0 …

* Driver app support for new identity provider is still in progress.

...

EMAIL SETTINGS
Template

“From” email address

Type in

“From” display name (optional)

Type in

“Reply to” email address (optional)

Type in

“Reply to” display name (optional)

Type in

Email settings - Connection

Host

Type in

Port

Type in

Encryption:

Enable SSL: YES / NO

Enable StartTLS: YES / NO

Authentication

User name: Type in

Password: Type in

THEMES

Additional customization

YES / NO

Email themes

Please, provide email customizations (texts, design).

LOCALIZATION

Supported languages

Type in

BRUTE FORCE DETECTION

When detected brute force:

Lockout permanently or
Lockout temporarily or
Lockout permanently after temporary lockout or None

Max login failures (default: 30)

Number of allowed login failures

→ Additional settings can be overridden. See https://landisgyr-evsolutions.atlassian.net/wiki/spaces/EO/pages/4407132400/Configuration+options+for+your+OCEAN+s+IdP#Brute-force-detection

PASSWORD POLICY

Password requirements

Type in

→ For options see documentation https://landisgyr-evsolutions.atlassian.net/wiki/spaces/EO/pages/4407132400/Configuration+options+for+your+OCEAN+s+IdP#Password-Policy

OTP POLICY

Enabled

YES / NO

Mandatory

YES / NO

→ Additional settings: https://landisgyr-evsolutions.atlassian.net/wiki/spaces/EO/pages/4407132400/Configuration+options+for+your+OCEAN+s+IdP#OTP-Policy

CUSTOM DOMAIN ADDRESS

Identity provider login form is served from: auth-[eu|oce].etrel.com.

If you want to use custom, brand related domain e.g., emobilitybrand.auth.com, add DNS CNAME record to auth-eu.etrel.com or http://auth-oce.etrel.com (based on your location) and we will whitelist your custom domain on our proxy.

Usage of custom domain

YES / NO

Custom domain

YES / NO

CUSTOM LIFETIMES

Access token lifespan
→ Default: 5 min

Insert time if want to customize

Session
→ Default: 30 min (after refresh token renewal)

Insert time if want to customize

Session max
→ Default: 10 h (after login required)

Insert time if want to customize

Initiated action lifespan
→ Default: 12 h (e.g. reset password link validity)

Insert time if want to customize

User Migration add-on template

...

USER MIGRATION TEMPLATE
Operators

Migrate existing operators

YES/NO

Send all operators to set new password

If YES, all operators will receive an email to reset their password once migrated to Ocean’s IdP

YES/NO

Drivers

Migrate existing drivers

YES/NO

Send all drivers to set new password

If YES, all drivers will receive an email to reset their password once migrated to Ocean’s IdP

YES/NO

Fleet managers

Migrate existing fleet managers

YES/NO

Send all fleet managers to set new password

If YES, all fleet managers will receive an email to reset their password once migrated to Ocean’s IdP

YES/NO