Authentication configuration

The Authentication node of Venafi Configuration Console allows you to configure settings related to how users can authentication to Venafi Platform using a variety of popular Identity Providers, including:

  • Okta
  • Ping Identity (including PingFederate, PingOne for Customers, and PingOne for Enterprise)
  • Azure
  • ADFS

As of Venafi Platform version 25.1, there is only one authentication connector, which is SAML. We anticipate migrating other authentication types (such as Windows Authentication and Certificate authentication) from WebAdmin to the new Authentication node in a future release.

You can only configure one authentication connector. Venafi Platform does not support connecting multiple authentication connectors at the same time.

To configure SAML authentication for Venafi Platform, see Prepare Venafi Platform for SAML SSO.

Configure web console session timeout

The Authentication node is also where you configure the session timeout settings for the web console.

To configure session timeout settings

  1. In the Authentication node of Venafi Configuration Console, click Session Timeout Settings in the Actions panel.

  2. [Conditional] If required, enter your admin credentials.

  3. Specify the timeout duration

  4. Specify the timeout duration unit

    For example, you could specify 30 minutes or 4 hours.

    The timeout value must be between 15 minutes and 24 hours.

  5. Click OK.

    6. NOTE  This value will not be applied until you stop and restart the web server. You will need to restart all web servers in the cluster to propagate this change. This can be done in sequence to prevent (or minimize) downtime.

    TIP  These settings will be retained when you upgrade to a new version of Venafi Platform.