SOP-5-I-42Q-MES0152 Identity Access Management

From 42Q
Revision as of 19:43, 24 January 2022 by Marisol vargas (talk | contribs)
Jump to navigation Jump to search


42Q Home >Account Services > Identity Access Management

 

 

Account Services 
Identity Access Management 
Version MES15.72
Revision C1

 

 

 

Introduction

42Q IAM (Identity Access Management) is the unified login management to the 42Q portal; it provides adaptive solutions to support different policies and guarantee the authentication/authorization with a more secure mode.   This document introduces the two forms of authentication:  

  • Enterprise Authentication
  • Local Authentication


When the user enters the42Q portal URL the system redirects to the unified login page: 


Figure 1: IAM Unified Login Page



    IAMUnified.png

 

 

42Q has two types of Enterprise Authentication: Federated and Non-Federated setups as explained below:

 

 

Enterprise Authentication with Federation Setup 

 

42Q IAM supports Federated authentication, this allows users to pass authorized credentials to the portal.

The Enterprise account with federation setup allows users to log in with the UID or email address,if the account is created by email address, users need to log in with their email address.


To access, as an Enterprise Authentication with Federation Setup user, follow the steps below: 

 

  1. Enter UID or email address in the Username field at the unified login page.
  2. Select the button Next.
  3. The system redirects the users to the SAML authentication.
  4. Enter the Username and Password, then select the Submit button. 


Figure 2: Enterprise Account with Federation Setup EnterpriseFed.png

 

 

Enterprise Authentication without Federation Setup

Enterprise accounts without federation setup will prompt from password and validate credentials with the previously configured enterprise for that instance.  

Users are allowed to log in with their username, the username can be UID or email address. 

To access 42Q, as an Enterprise user without federation, follow the steps below: 

 

  1. Enter the Enterprise account in the Username field at the unified login page.
  2. Select the Next button.


Figure 3: Enterprise Account without Federation Login EnterpriseWOFed.png

 

 

  1. The system will ask users to input the password.

 

Figure 4: Input Password Form    InputPwdForm.png

 

 

  1. Once the username and password are valid, the system redirects to the 42Q home page with the user signed in.

 

 

  Figure 5: Enterprise  Account Login 42Q Portal EnterpriseAccountLogin.png

 

 

Local Authentication

42Q IAM also supports Local authentication; in the example below, the username is one Local user. Also, Local users can be set up with alphanumeric, or email format.

 


Figure 6: Local Account LocalAccount.png

 

 

To access 42Q, as a Local user follow the steps below: 

  1. Enter the Local user account in the Username field at the unified login page.
  2. Select the Next.
  3. The system will ask users to input the password.


Figure 7: Local Account Login LocalAccountLogin.png

 

 



 

  1. Once the username and password are valid, the system redirects to the 42Q home page with the user signed in.



 

Forgot Password

When users forget their password, they can reset their password by clicking the Forgot password? link on the landing page, is option is available for Local Users. Once clicked, users will be redirected to the Account Services to reset the password and the users supervisor or support team will provide assistance for password changes.

 

For Enterprise users, an email will be provided with the following information concerning password changes. An expired link will be emailed to users with a link provided to change the desired password. 


Figure 8: Forget Password ForgotPwd.png

 

 


Note: In 60 days (default value) local users will have to change their password and if they haven't had a chance to log into the system during that period, their account will be inactivated.