Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 12 Current »

This questionnaire assists in initializing the Ocean’s identity provider.

Follow configuration documentation to fill out the form - Configuration options for your OCEAN's IdP

Start migration to Ocean’s IdP by sending us configuration details via JIRA

To fill out the form, open a new support ticket in JIRA, “New feature request” and select “Setup for Ocean’s Identity Provider” category. You will get a table template you see below which you can edit.

Summary: Setup for Ocean’s IdP: Company_name

Configuration Template

INSTANCE DETAILS

Company name

Type in your company name

Brand name

Type in your brand

EXTERNAL IDENTITY PROVIDERS
Social Logins (ex: Facebook, Google, …)

Operator app

Specify if you would like to use SSOs on your login forms and which for Operator app

YES/NO

If YES, type which ones: Facebook, Google, …

*Driver app

Specify if you would like to use SSOs on your login forms and which for Driver app

YES/NO

If YES, type which ones: Facebook, Google, …

Fleet manager app

Specify if you would like to use SSOs on your login forms and which for Fleet manager app

YES/NO

If YES, type which ones: Facebook, Google, …

Identity Brokers (ex: Azure, Okta, Keycloak, Auth0, …)

Operator app

Specify if you would like to use Federation login on your login forms and which for Operator app

YES/NO

If YES, type which ones: Azure, Auth0 …

*Driver app

Specify if you would like to use Federation login on your login forms and which for Driver app

YES/NO

If YES, type which ones: Azure, Auth0 …

Fleet manager app

Specify if you would like to use Federation login on your login forms and which for Fleet manager app

YES/NO

If YES, type which ones: Azure, Auth0 …

* Driver app support for new identity provider is still in progress.

EMAIL SETTINGS
Template

“From” email address

Specify email address (ex: name@domain.com) you would like to send emails from

Type in

“From” display name (optional)

Specify display name (ex: Company Name) you would like users to see when they receive emails

Type in

“Reply to” email address (optional)

Specify email address (ex: name@domain.com) you would like users to reply to your emails

Type in

“Reply to” display name (optional)

Specify display name (ex: Company Name) you would like users to see when they reply to your emails

Type in

Email settings - Connection

Host

Type in

Port

Type in

Encryption:

Enable SSL: YES / NO

Enable StartTLS: YES / NO

Authentication

User name: Type in

Password: Type in

THEMES

Additional customization

YES / NO

Email themes

Please, provide email customizations (texts, design).

LOCALIZATION

Supported languages

Type in

BRUTE FORCE DETECTION

When detected brute force:

Lockout permanently or
Lockout temporarily or
Lockout permanently after temporary lockout or None

Max login failures (default: 30)

Number of allowed login failures

→ Additional settings can be overridden. See https://landisgyr-evsolutions.atlassian.net/wiki/spaces/EO/pages/4407132400/Configuration+options+for+your+OCEAN+s+IdP#Brute-force-detection

PASSWORD POLICY

Password requirements

Specify which password requirements you would like to use

Type in

→ For options see documentation https://landisgyr-evsolutions.atlassian.net/wiki/spaces/EO/pages/4407132400/Configuration+options+for+your+OCEAN+s+IdP#Password-Policy

OTP POLICY

Enabled

YES / NO

Mandatory

YES / NO

→ Additional settings: https://landisgyr-evsolutions.atlassian.net/wiki/spaces/EO/pages/4407132400/Configuration+options+for+your+OCEAN+s+IdP#OTP-Policy

CUSTOM DOMAIN ADDRESS

Identity provider login form is served from: auth-[eu|oce].etrel.com.

If you want to use custom, brand related domain e.g., emobilitybrand.auth.com, add DNS CNAME record to auth-eu.etrel.com or http://auth-oce.etrel.com (based on your location) and we will whitelist your custom domain on our proxy.

Usage of custom domain

YES / NO

Custom domain

Specify custom domain name (ex: domain.com)

Text

CUSTOM LIFETIMES

Access token lifespan
→ Default: 5 min

Insert time if want to customize

Session
→ Default: 30 min (after refresh token renewal)

Insert time if want to customize

Session max
→ Default: 10 h (after login required)

Insert time if want to customize

Initiated action lifespan
→ Default: 12 h (e.g. reset password link validity)

Insert time if want to customize

User Migration add-on template

Fill out this template only if you had existing users in old Ocean’s platform database and you want to migrate users to Ocean’s IdP.

For more detail see Migration from old OCEAN platform database to OCEAN's Identity Provider

USER MIGRATION TEMPLATE
Operators

Migrate existing operators

YES/NO

Send all operators to set new password

If YES, all operators will receive an email to reset their password once migrated to Ocean’s IdP

YES/NO

Drivers

Migrate existing drivers

YES/NO

Send all drivers to set new password

If YES, all drivers will receive an email to reset their password once migrated to Ocean’s IdP

YES/NO

Fleet managers

Migrate existing fleet managers

YES/NO

Send all fleet managers to set new password

If YES, all fleet managers will receive an email to reset their password once migrated to Ocean’s IdP

YES/NO

  • No labels