.png){kind=logo}
Domains
A Domain in Signum is a defined method of authentication for a group of users to authenticate to the Signum service. The available method of authentication depends on how the users are authenticating to the service, as defined in the following table.
Multiple Domains can be defined to accommodate various use cases. For example, a SAML domain could be created for an organization's users or groups from an IDP like Azure Active Directory using the Windows Agent in attended mode, while a separate Local Users Domain could be created to authenticate a Linux build server.
Admin Web Console | Web Admin Console | Windows Agent Attended | Windows Agent Unattended | Linux Agent | MacOS Agent |
|---|---|---|---|---|---|
SAML |
|
|
|
| |
OAuth |
|
|
|
| |
Local Users (Username/Password) |
|
| |
|
|
Certificate | Certificates can be used with SignServer backend. |
Create a Domain
To create a new domain:
Log in to the Admin Web Console and navigate to Access>Domains.
Select the New button. The following window appears:
Configure the domain options. See the following table for a description of the options:
Domain Options
Option | Description |
|---|---|
Domain Alias | The Alias is what users will use to reference this domain when logging in to the service. For example, with a Local Users Domain, a user with the username of John would log in to the Domain with an alias name of myDomain by entering John@myDomain. For SAML and OAuth Domains, the Alias can match the email domain of the users. For example, for an organization with emails formatted first.last@companyname.com, the Alias could be companyname.com. |
Domain Type | For Signum SaaS, the valid Domain types are:
|
Concurrency Per User | Setting for the domain to allow a single user to authenticate into multiple Agent sessions simultaneously. This can be useful for short-lived build pipelines and service accounts. |
User Limit | It is a limit on the number of users that a given Domain can be configured with. |