Configuring and Using Authentication

OpenAir can authenticate users internally, by using information stored in the OpenAir database. OpenAir also supports external authentication methods: an external Identity provider can be used to manage authentication using the Security Assertion Markup Language (SAML) protocol, SAML can also be used to integrate with Active Directory, or the NetSuite Single Sign-On feature can be used to access applications in OpenAir from within NetSuite. OpenAir uses the Transport Layer Security (TLS) protocol to ensure the security of network authentication — all passwords are encrypted during transmission.

The following authentication mechanisms may be configured and used for your OpenAir account.

• Authentication by OpenAir

• SAML Authentication

• NetSuite Single Sign-On

• OAuth 2.0 Token Based Authentication (Help topic under Administrator Guide)

Note:

OpenAir stopped supporting Secure Lightweight Directory Access Protocol (LDAPS) service for authentication with the OpenAir 2020.1 release in April 2020. The Active Directory integration optional feature allowing to use Active Directory user authentication with Secure Lightweight Directory Access Protocol (LDAPS) can no longer be enabled. You can use your existing LDAPS service with a SAML 2.0 service instead.