General Authenticaiton
In order for our discovery engine have access to the systems (aka ‘data sources’) we support multiple Authenticaiton methodes, depending on what is supported from the data source vendor.
- AAD Service Principal (Entra ID Service Principal)
- OAuth 2.0
- Legacy Authentication
- Basic Authentication
- JSON Authentication
- Key Authentication
- Account Authentication
- SAML Authentication
- Role Authentication
- STS Authentication
PrerequisitesSince all vendors does not support specific permissions after authenticaiton, we support filters on our side. So that you have the option to only scan what you need and are allowed to.
Include: kalle@abc.com, fnatte@abc.com (This will make sure that only defined two accounts are scanned.)
Exclude: admin@abc.com (This will make sure that all Account except admin@abc.com is scanned.)
- AAD Service Principal
- Permissions Description: Allows the app to read all files in all site collections without a signed in user.
- AAD Service Principal
- Permissions Description: Allows the app to read documents and list items in specified or all site collections without a signed in user.
- OAuth 2.0
- Permissions Description: Same permissions that the OAuth Credentials has, e.g. (specified) read sites x,y,z
- AAD Service Principal
- Permissions Description: Allows the app to read documents and list items in all site collections without a signed in user.
- OAuth 2.0
- Permissions Description: Same permissions that the OAuth Credentials has, e.g. (specified) read user mailboxes of x,y,z
- Service Account OAuth 2.0
- Permissions Description: Same permissions that the OAuth Credentials has, e.g. (specified) read gdrives x,y,z
- OAuth 2.0
- Permissions Description: Same permissions that the OAuth Credentials has, e.g.(specified) read gdrives x,y,z
- Json Authenticaiton
- Permissions Description: Specific permissions, e.g. read gdrives x,y,z
- OAuth 2.0
- Permissions Description: Same permissions that the OAuth Credentials has, e.g. (specified) read gdrives x,y,z