Applies to: Kyvos Reporting

Kyvos Reporting provides the following ways to authenticate users.

• Intellicus

• External Application

• Host Application

• Call Back Mechanism

Authentication

To authenticate users through a preferred channel, select one of the following values in the Authentication Check is performed by dropdown.

• Select

  Intellicus if Kyvos Reporting should authenticate the user of this organization. Username and password will be stored in the Kyvos Reporting repository. When a user logs in, Kyvos Reporting will verify the credentials before allowing access. Select this value when Kyvos Reporting is deployed as a stand-alone.

• Select

  External Application to authenticate users by an external application.

  • Select Type and provide the Server IP and Port of the external application’s machine.

  • The User DN of the user is required to authenticate to the external source. In this case, you need to map application users with Kyvos Reporting users.

  • The supported external authenticators are LDAP, LDAPS & SAML 2.0.

Open

• Select the

  Host Application to authenticate users through the application integrated with Kyvos Reporting. To authenticate via the host application, you need to manually map the users.

• Select the

  Call Back Mechanism when Kyvos Reporting is integrated in an application, and it should call the host application’s code to perform the authentication check. In this case, a function is called along with user credentials as arguments. This function carries out authentication and returns the result.
  For your authentication code, under the Java Class Implementer, specify the implementer class name that Kyvos Reporting should call.

Global Filter Settings

Kyvos Reporting’s Global Filters feature allows you to set fields based on which you can filter every report-related query. This is to ensure that users have access to the required information.

To apply a security filter, select the Global Filter Settings checkbox.

• If Kyvos Reporting should apply the filter, select the Intellicus option.

  • Global Filter Column Name: This is the requirement from the database side. All filterable tables must contain a common-named column for applying automatic global filtering. Specify that column in this box.

  • User Attribute: Select the user attribute that should be used for matching the secured records for a logged-in user.

  • Ignore if Not Present: Check this checkbox to ignore filtering if the global filter column is not found in the database. When kept unchecked, and if the global filter column is not found, Kyvos Reporting will generate an exception.

• If you want to apply a filter using the Call Back Mechanism

  • Select the Call Back Mechanism button. Specify respective values based on the requirements of the application, taking care of the callback.

Password Settings

To govern passwords, perform the following settings.

• In the Minimum Password Length textbox, enter the minimum number of characters that a password must have.

• To enforce password reset on first login, select Reset Password on First Login.

• To enforce a change of password at regular intervals, enter the number of days after which the password must expire in the Password Expires textbox.

• Select the Password Never Expires checkbox to allow the same password usage indefinitely.