- +1 888-317-9283
- +44 (0) 800 242 5602
Federated Services and Access Control
Kontiki Federated Services and Access Control
Kontiki provides support for user authentication federated services via SAML 2.0 integration. As an alternative to using SAML for user authentication, Kontiki also provides authentication and access control via integration with a corporate user directory such as Active Directory (or any LDAP compliant directory system). These security overlays allow administrators to govern privileges ranging from specifying which groups of users can upload video, approve or reject published videos, police metadata, moderate comments, brand the end user experience, promote content on key pages, syndicate to existing intranet sites, create channels or assign content to channels, and more.
SAML
SAML (Security Assertion Markup Language) is an XML-based, open standard for authentication and authorization between security domains. Kontiki employs SAML to enable single sign-on (SSO) capability for Kontiki applications, such as VideoCenter.
Kontiki supports the SAML 2.0 specification for enabling SSO with Kontiki applications. SAML 2.0 uses security assertions to pass user authentication and attribute information between an Identity Provider (your company) and a Service Provider (Kontiki). The authentication process follows the SP initiated Web Browser SSO Profile with HTTP Redirect Binding.
Active Directory/LDAP
Active Directory is a directory service created by Microsoft for Windows networks. It serves as a central location for network administration and security and is responsible for authenticating all users within a network. Active Directory uses LDAP (Lightweight Directory Access Protocol).
The Kontiki client offers end-to-end security, including seamless integration with Active Directory and LDAP-compliant directory systems. This includes support for user access control to the video library, single-sign-on, encryption of all messages and content delivery, and mechanisms to ensure the integrity of content received, whether the source of the content is a central server or other clients.
