Single Sign-On

CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. can leverage CORE integration with an OpenID Connect (OIDCOpenID Connect is identity layer on top of the OAuth 2.0 protocol) provider enabling the Single Sign-On (SSOSingle Sign-On) authentication for the CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. partition users. After configuring CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. for OIDCOpenID Connect is identity layer on top of the OAuth 2.0 protocol, the CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. UI login page presents the standard login option and the registered SSOSingle Sign-On provider.

To configure SSOSingle Sign-On, use the following steps.

1. Configure SSOSingle Sign-On in CORE by following the steps in the CORE User Guide section on Single Sign-on.

   Note
   1. CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. uses the email (if provided) and login name for the OIDCOpenID Connect is identity layer on top of the OAuth 2.0 protocol aliases.
   2. The identity provider used by CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. is currently limited to the first provider defined in CORE if more than one is defined.

2. Add the credentials of a CORE SOSecurity officer - UKC partition administrator role. user to CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions.. The SOSecurity officer - UKC partition administrator role. user can be from any CORE partition. CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. uses this SOSecurity officer - UKC partition administrator role. to create users in CORE that map to OIDCOpenID Connect is identity layer on top of the OAuth 2.0 protocol users.

   Set up the CORE username and password in CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. with the CASP Setup Utility.

   casp_setup_ukc --ukc-admin-user <SO-USER> --ukc-admin-password <SO-PASSWORD>

   Note
   If you leave out the ukc-admin-password argument, you are prompted to enter the password.

3. If Tomcat is not running, start it using the command:

sudo service casp.tomcat start

If Tomcat is running, restart it using the command:

sudo service casp.tomcat restart

4. In the CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. UI, add an OIDCOpenID Connect is identity layer on top of the OAuth 2.0 protocol user.
   1. Access the Users screen.
   2. Click Create.
   3. Select OpenID Connect for the AuthenticationProcess used to achieve sufficient confidence in the binding between the Entity and the presented Identity. method.
   4. Enter the email and the role.
   

There is now an OIDCOpenID Connect is identity layer on top of the OAuth 2.0 protocol user defined in CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions.. That user can access the CASPUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. UI with their OIDCOpenID Connect is identity layer on top of the OAuth 2.0 protocol credentials.