Authentication

The Settings > Configuration > Authentication window allows you to set parameters for your Aisera tenant. These are settings that apply to any bot you create in your Aisera tenant.

Aisera Authentication

Aisera Authentication is the platform's internal authentication system. When selected, users log in with a username and password managed within the Aisera platform.

User accounts are created and managed through the Aisera Admin UI. Administrators set up users with an email address and initial password.

When Aisera Authentication is enabled, all user credentials and authentication flows are handled internally by the Aisera platform. No external identity provider or single sign-on system is involved.

To use an external identity provider instead, select SSO Authentication and provide the required SSO configuration details.

SSO Authentication

This feature is Off by default. When Off, the system uses Aisera Authentication.

When enabled, users will authenticate through an external Single Sign-On provider instead of using passwords managed within the system. The authentication flow redirects users to the configured SSO provider, which validates their credentials and returns authentication tokens to the system.

When SSO Authentication is enabled, users created in the system will not be assigned functional passwords. The system will skip password validation during user creation and management. User accounts will authenticate exclusively through the external SSO provider.

Separate Window

When enabled, the system will open the SSO authentication flow in a separate popup window instead of navigating the main browser window to the external SSO provider. The user will authenticate in the popup, and upon successful authentication, the popup will close and return control to the main application window.

When disabled, the system will navigate the current browser window directly to the external SSO provider for authentication.

This configuration applies when SSO Authentication is enabled for the tenant.

Skip Compression

This feature is Off by default. When Off, the system will compress the X509 certificate.

When enabled, the system will send the X509 certificate to the SSO provider in uncompressed form. Some IdPs require the certificate in uncompressed format and will fail authentication if the certificate has been compressed.

When disabled, the system will compress the X509 certificate before sending it to the SSO provider.

This configuration applies when SSO Authentication is enabled for the tenant and an X509 certificate has been configured.