Supported User Directory Sources
GENESIS can load its user directory from multiple sources, offering flexibility in user management. Users and groups can be created and managed directly within GENESIS using its own directory, or it can import them from a third party user directory management. The Security configuration for users and groups have fully configurable roles, permissions, and policies within GENESIS whether configured locally or imported from external systems.
The following table describes the supported user directory sources.
|
Source |
Description |
|---|---|
|
Local Database |
Users and Groups are configured and maintained locally to the GENESIS configuration in database tables within the project. Creation, updating, and deletion of users and groups is performed within the Workbench environment directly. Learn more |
|
Active Directory |
When connected to Active Directory (AD), GENESIS can synchronize with AD to import users and groups, leveraging existing credentials and permissions from the organization’s AD infrastructure. You can configure this synchronization to occur periodically, ensuring that any changes in AD, such as new users or group assignments, are reflected in GENESIS. In the case of Active Directory, you can use cached user credentials. If there is a temporary AD outage, you can still log in using the credentials previously cached during a successful login. Learn more |
|
Microsoft Entra ID (formerly Azure AD) |
When using Entra ID, GENESIS operates similarly to AD, connecting to the cloud-based directory to authenticate users. This allows organizations that use Entra ID for cloud identity management to integrate seamlessly with GENESIS, extending single sign-on (SSO) capabilities and centralized control over user access. Learn more |
|
Web Login |
Web Login allows an external OpenID Connect (OIDC) identity provider (IdP) or a SAML 2.0 IdP to connect and authenticate user access to GENESIS components. The system receives a security token from the external provider and maps it to an internal user in GENESIS, allowing access based on predefined permissions. This feature offers flexibility for organizations to use their preferred identity provider while maintaining control over user access in GENESIS. Learn more |