Our new unified Fortra Identity Provider (FIDP) has improved how Fortra handles user authentication and access control. With this powerful step towards an integrated platform, we have enhanced security, streamlined user experiences across our portfolio, and enabled seamless integration with external identity providers such as Microsoft and Google.
FIDP serves as a centralized solution that allows users to log in and register using their existing credentials from popular external identity providers. By incorporating industry-standard protocols like OAuth 2.0, we ensure secure authentication while providing a familiar and convenient login experience for our users.
By introducing this new Fortra Login, our users are empowered with secure and convenient access to Fortra solutions, enhancing their overall experience and ensuring their sensitive data remains protected.
Below you will find answers to several common questions about Fortra single login and FIDP.
Question | Answer |
What are the benefits of using Fortra single login? |
Key features and benefits include:
|
How does Fortra single login work? |
Fortra Identity Provider is backed by Keycloak. FIDP performs an OAuth 2.0 authentication exchange with Keycloak to generate a JWT token, which is the same format as our existing identification token. The FIDP token is then included in calls to the Alert Logic Backend to authenticate requests. Periodically, our UI checks in with Keycloak to ensure that the authentication session is still valid. |
How do I register FIDP credentials for my user? |
For step-by-step instructions on FIDP credentials registration, refer to this document. |
How can I verify the FIDP status for my user account? |
You can navigate to the Support Page in Alert Logic Console by expanding the main navigation menu and selecting Support. The Forta Identity Provider Status will display one of these values:
|
Currently we do not require MFA to access the Alert Logic console. Will MFA be required? |
If a user authenticates with Username and Password, then that user will be required to provide multi-factor authentication (MFA) with an authenticator app to ensure the account remains protected. |
What mobile Authentication apps are supported? |
We recommend using Google Authenticator or 1Password but most modern authenticator apps will work. |
Can I manage MFA for other users? |
No, users must manage their own MFA authenticator applications and configuration in the the Fortra Account Console. |
Why should I use Microsoft or Google? |
Using an existing account means that you don’t have to create, maintain, and remember a new set of credentials. This helps encourage a single strong password rather than multiple weak ones. Also, MFA is not required when you use Microsoft or Google. |
Does FIDP work with custom SSO (not MS or Google)? | Currently we only support Microsoft and Google as external identity providers. Custom SSO will be supported in the future. |
Do I need to enable TLS on my e-mail server(s)? |
Yes, TLS must be enabled on your e-mail server(s) to receive secure messages required to register your Fortra credentials. For more information on TLS email encryption, refer to this document. |
Do I need to allow third-party cookies for Fortra single login to work? |
It is strongly recommended, since third-party cookies are blocked by default in most browsers. Alert Logic applications require third-party cookie exceptions to be configured in the browser so we can seamlessly interact with these sites. Most issues can be avoided by enabling third-party cookies on all Alert Logic and Fortra sites. For more information on allowing exceptions for third party cookies, refer to this article. |
Does the Alert Logic Mobile App work with Fortra single login? |
Yes, the Alert Logic Mobile App is FIDP aware. |
What are the FIDP password requirements? |
The password policy adheres to NIST guidelines and is PCI-compliant:
|
How do I change or reset the FIDP password? |
You need to navigate to the User Management page in the Alert Logic console and click VIEW for the user in the list. The Reset Password section will provide a link to the Fortra Account Console. The Change Password button under the Basic Authentication section will allow you to update the password for your Fortra account. |
How are Notification Only users handled? |
These users will not be migrated. If the Notification Only user email address is associated with another user in the same account, we will add the other user to all alerts and remove the Notification Only user. Also, we will prevent adding users with the same email address in the same account moving forward. |
Comments
0 comments
Please sign in to leave a comment.