| PAS Component |
| Standard Installation | Customization Options |
|---|
PAS Platform
| | PAS standard layout | - background image
- colors
- favicon
- language
- logo
- text (content and font settings)
|
API Management
| | PAS standard layout | - additional menu entries
- colors
- favicon
- footer
- header image
- language
- license agreement link
- text (content and font settings)
|
| Enabled | Disable feature |
| Email Notifications - Notification mails send to users, e.g. when the "Forgot Password" link on the login page is used.
| PAS standard text | Text and layout of the following emails are adaptable: - Answer to "Forgot Password" request
- Answer to self registration request
|
Security Hardening - Brute Force detection
- Security headers
- OTP (2FA) could also be configured in Keycloak admin console to force requirement setting up e.g. Google authenticator app for logging in.
| - Brute force detection: disabled
- Security headers: ensures PAS is working
- OTP (2FA): disabled
| - Enable brute force detection
- Security headers can be changed to customer needs
- Enable OTP (2FA)
|
Federation Configuration
- Scheer PAS uses its own user database/management. However, LDAP can be configured so existing user acocunts can be imported in PAS. Furthermore SAML2.0 as well as OpenID Connect links can be established to provide auto-provisioning of users.
- Also another Keycloak instance can be relayed.
| PAS User Management | |