| PAS Component |
| Standard Installation | Customization Options |
|---|
PAS Platform
| | PAS standard layout | - colors
- background image
- favicon
- language
- logo
- text (content and font settings)
| | Disabled | - background image
- colors
- favicon
- language
- logo
- text (content and font settings)
|
API Management
| | PAS standard layout | - additional menu entries
- colors
- favicon
- footer
- header image
- language
- license agreement link
- text (content and font settings)
| Creation of Organizations | Enabled |
Disable feature
(allow all users the creation of organizations) | | Enabled | Disable feature |
| User Self Registration | Anchor |
|---|
user_self | user_self | Currently only in use in relation with API Developer Portal. | Enables visitors of your API Developer Portal to register for a new account.If enabled, the related registration page contents can also be adapted, see Registration page.Disabled | Enable feature | Email Notifications - Notification mails send to users, e.g. when the "Forgot Password" link on the login page is used.
| PAS standard text | Text and layout of the following emails are adaptable: - Answer to "Forgot Password" requestAnswer to self registration request
|
Security Hardening - Brute Force detection
- Security headers
- OTP (2FA) could also be configured in Keycloak admin console to force requirement setting up e.g. Google authenticator app for logging in.
| - Brute force detection: disabled
- Security headers: ensures PAS is working
- OTP (2FA): disabled
| - Enable brute force detection
- Security headers can be changed to customer needs
- Enable OTP (2FA)
|
Federation Configuration
- Scheer PAS uses its own user database/management. However, LDAP can be configured so existing user acocunts can be imported in PAS. Furthermore SAML2.0 as well as OpenID Connect links can be established to provide auto-provisioning of users.
- Also another Keycloak instance can be relayed.
| PAS User Management | |