The WoodWing Identity Service (WIS) is a cloud-only service for WoodWing Cloud customers in which administrators can manage users and user groups in a central location and give these users access to one or more WoodWing products. Users can then log in to each product using only one account.
Users and user groups can be created manually, or they can be stored in an external identity provider by linking the WoodWing Identity Service to a Single Sign-On (SSO) provider. This integration seamlessly connects users to WoodWing applications, thereby simplifying and streamlining user authentication.
The service supports authentication for internal users and one connection to an external identity platform using OpenID or SAML. All configuration is shared with all tenants, thereby ensuring that SSO works the same across all products.
This article describes how the WoodWing Identity Service works.
How it works
When on-boarding to a WoodWing product, one user is automatically added and made part of the Admins group to which the 'owner' role has been assigned. This user then has full access rights to fully set up the user environment.
Users and user groups are then either manually defined within the WoodWing Identity Service or they are added by connecting it to an external identity provider.
Access to a tenant (an instance of a WoodWing application such as Assets 10) is defined on group level.
These groups then appear in the management environment of that application (such as Assets 10) so that further access to the features of that application can be defined there.
|
Example: A company decides to purchase Assets 10. One person within that company is sent a link to the WoodWing Identity Service to create the first account for that company. This user is automatically made part of a group with the 'owner' role so that all features of the WoodWing Identity Service can be used. Within the WoodWing Identity Service, users and user groups are defined: either manually or by integrating an external identity provider. Each group is given access to the Assets 10 environment. Within Assets 10, the groups with access to Assets 10 appear on the Permissions page of the Management Console so that granular access to the features and functionality of Assets 10 can be defined. Users are invited to Assets 10 by the system administrator by sending them an invite from within the WoodWing Identity Service. They will get access to their profile within the WoodWing Identity Service and set up their display name and password. Within their profile, an overview of the tenants they have access to is shown. Each tenant can be accessed by clicking its link. |
Accessing the WoodWing Identity Service
New customers access the WoodWing Identity Service via the link that is provided during the on-boarding process.
Regular users are invited to WoodWing Cloud by their system administrator. Once logged in to the WoodWing Identity Service, they can see which tenants they have been given access to and can access each tenant by clicking the link for it.
Components
The WoodWing Identity Service is divided into the following sections:
- My profile. For users to manage their personal profile within the WoodWing Identity Service (display name and optionally password). It also provides an overview of the tenants the user has access to.
- Groups. For managing user groups.
- Users. For managing user accounts.
- Tenants. Provides an overview of the tenants that have been set up within the customer account.
- Settings. For managing the settings of the customer account, including linking it to an identity provider.
Note: The pages Groups, Users, Tenants, and Settings are available for users who are part of a group with the role 'owner' only.
Using the WoodWing Identity Service
For details about the WoodWing Identity Service and how to use it, see the following articles:
Comment
Do you have corrections or additional information about this article? Leave a comment! Do you have a question about what is described in this article? Please contact Support.
0 comments
Please sign in to leave a comment.