Setting Up OpenID Connect (Enterprise Only)
NavVis IVION uses OpenID Connect to provide a secure, reliable, and easy way to authenticate federate users. OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol and allows you to connect your authentication system to NavVis IVION via a single sign-on authorization provider like Keycloak. By delegating Authentication to OpenID Connect and using the OAuth 2.0 authorization protocol, NavVis IVION is able to support advanced authentication schemes and takes advantage of reliable and proven industry standards.
- Install Keycloak.
- Create a new realm.
- If you are setting up from scratch you need to create users.
- Create an OpenID Connect client.
- Configure NavVis IVION to use this client.
- Log in to NavVis IVION with OpenID Connect.
- Access the login menu by singing out of NavVis IVION.
- Click the Continue with button.
- This will redirect you to the provider page where you log in.
- You will be redirected to NavVis IVION.
Mapping External User Groups to NavVis IVION (Enterprise Only)
If user groups have been created in NavVis IVION, the administrator can map these groups from an external authorization provider such as Keycloak. Once mapped, users that are part of a mapped group will be automatically added to this group in NavVis IVION when they log in.