Intro

TDS has multiple ways of users authentication, authorisation and provisioning. Possibilities depend on a combination of customer requirements and TDS capabilities.

Types of supported environments

From a network point of view

From AD/ADFS authentication integration point of view

From users origin point of view

Two users categories are distinguished:

From users origin combination point of view

When both AD users and non AD users are present in TDS, we are talking about a hybrid environment:

Provisioning capabilities

General provisioning capabilities

Provisioning capabilities flow diagrams

Invitations and sign-up flow

Invitation is always valid only for 24 hours. In case of expiry new invitation must be sent.


CSV import flow

Steps:

Provisioning capabilities suitable for various types of environments

Authentication capabilities

Authorisation capabilities

These depend on agreed service delivery mode and on the capability of the application to provide non-system administrator permissions.