Need Help? We are right here!
Kayako with its adaptable and dynamic helpdesk software can provide you the unforgettable customer experiences to your customers or internal users. miniOrange allows you to setup Single Sign-On (SSO) into Kayako using two standard protocols like SAML 2.0 & JSON Web Token (JWT). Kayako SSO with JWT is achieved by protocol brokering between JWT & SAML. miniOrange allows your users to Single Sign-On into Kayako by verifying Identity with your existing SAML 2.0 compliant Identity Provider and passing JWT tokens to Kayako. Combining the power of Kayako platform with miniOrange IAM platform allows users to quickly & seamlessly log into their Kayako Account. This combination increases employee productivity from day one and also ensures a secure experience with minimal IT overhead.
miniOrange provides user authentication from various external sources, which can be Directories (like ADFS, Microsoft Active Directory, Azure AD, OpenLDAP, Google, AWS Cognito etc), Identity Providers (like Shibboleth, Ping, Okta, OneLogin, KeyCloak), Databases (like MySQL, Maria DB, PostgreSQL) and many more.
|Custom App Name||Enter the Application Name of your choice, and add a description if required.|
|Redirect-URL||Enter the Redirect-URL (i.e. the endpoint where you want to send/post your JWT token). You can add multiple redirect URLs by separating them with a ‘;’. E.g. abc.com;xyz.com|
|Primary Identity Provider (optional)||Select your Identity Source from the dropdown. You can select miniOrange here as default IDP.|
|Client ID||If your application provides its own client ID, you can configure it by clicking on the Customize button.|
|App Secret||You can find App Secret by clicking on the copy icon. This is used in the HS265 Signature algorithm for generating the signature.|
|Signature Algorithm||Select your signature algorithm from the dropdown.|
|Primary Identity Provider||Select the default Identity Provider from the dropdown for the application. If not selected, users will see the default login screen and can choose their own IDP. [Choose miniOrange in this case.]|
|Redirect URL||Given below is your app URL where you will receive your token. RSA 256 : <your_app-login-url> (Here token will be added by the system) HS256 : <app-login-url/?id_token=>|
miniOrange provides user authentication from various external sources, which can be Directories (like ADFS, Microsoft Active Directory, Azure AD, OpenLDAP, Google, AWS Cognito etc), Identity Providers (like Okta, Shibboleth, Ping, OneLogin, KeyCloak), Databases (like MySQL, Maria DB, PostgreSQL) and many more. You can configure your existing directory/user store or add users in miniOrange.
1. Create User in miniOrange
2. Bulk Upload Users in miniOrange via Uploading CSV File.
Here's the list of the attributes and what it does when we enable it. You can enable/disable accordingly.
|Activate LDAP||All user authentications will be done with LDAP credentials if you Activate it|
|Sync users in miniOrange||Users will be created in miniOrange after authentication with LDAP|
|Fallback Authentication||If LDAP credentials fail then user will be authenticated through miniOrange|
|Allow users to change password||This allows your users to change their password. It updates the new credentials in your LDAP server|
|Enable administrator login||On enabling this, your miniOrange Administrator login authenticates using your LDAP server|
|Show IdP to users||If you enable this option, this IdP will be visible to users|
|Send Configured Attributes||If you enable this option, then only the attributes configured below will be sent in attributes at the time of login|
Refer our guide to setup LDAPS on windows server.
miniOrange integrates with various external user sources such as directories, identity providers, and etc.
Our Other Identity & Access Management Products