Auth & SSO¶
[!NOTE] Required role:
account_adminRequired account type: Enterprise or Medical
This section covers identity provider configuration for enterprise-grade authentication. It is only visible for Enterprise and Medical accounts.
| Page | What it covers |
|---|---|
| User Storage | Custom user directory (LDAP/DB) integration. |
| Identity Providers | Keycloak multi-realm, OIDC, SAML, LDAP, GitHub/LinkedIn OAuth. |
| Stored Users | Local user CRUD within the identity provider. |
| Login Settings | Password policy, session timeout, brute-force protection. |
| Authentication Flows | MFA enforcement, authentication flow configuration. |
| SMTP Settings | Mail server for password reset and notification emails. |
📸 Screenshot: the Auth & SSO section in the sidebar.