# Setting Hideez Server parameters

To work correctly, you need to specify some basic settings. 

Go to **Settings → Parameters**. 

<figure><img src="https://1669663611-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FRdTysrljwe610dPFG7tE%2Fuploads%2FadsEtBPA3bxorip7njKi%2Fimage.png?alt=media&#x26;token=eb601d15-0f3c-49e5-8ba6-bd10578230f7" alt="" width="563"><figcaption></figcaption></figure>

## **Application**

Domain name setup

{% hint style="info" %}
The domain is used in email, FIDO2 authorization processes, and SAML and OIDC protocols. In addition, the domain is used when checking the product license.
{% endhint %}

<figure><img src="https://1669663611-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FRdTysrljwe610dPFG7tE%2Fuploads%2FMjLvvkRaPiZiaLfWdu0e%2Fimage.png?alt=media&#x26;token=a3dde2fd-d374-402e-807e-182d5cf0252a" alt="" width="563"><figcaption></figcaption></figure>

## **Mail**

Administrators can configure credentials to send service email messages to users. These messages are used to invite new employees, reset employee passwords, change employee email addresses, send activation codes for Hideez Key, and more. To check the current credentials you are using to send emails, you need to expand the Mail section:

<figure><img src="https://1669663611-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FRdTysrljwe610dPFG7tE%2Fuploads%2FFebAMndObA5XI6yeaFb4%2Fimage.png?alt=media&#x26;token=e3f95049-9347-49c7-9703-98e44090df54" alt="" width="563"><figcaption></figcaption></figure>

To set **Email Credentials,** fill in the following fields:&#x20;

* **Host –** this is the email server address you want to connect to. For example, for Gmail, the SMTP host might be “smtp.gmail.com” and the IMAP host might be “imap.gmail.com”. The actual host may vary depending on the email service provider and the specific protocol you are using.
* **Port –** this is the numeric code that determines the specific network port for establishing a connection to the email server using a specific email protocol.
* **Enable SSL –** this is an option that indicates whether to use SSL (Secure Socket Layer) to establish a secure connection with the email server. SSL encrypts the data transmitted between your computer and the server to protect sensitive information during transmission.
* **Email –** is the email address that you use for sending and receiving messages.
* **Password –** this is the password associated with your email address. It is used for authentication and confirming your identity when connecting to the server.

The configured mail may look like this:

<figure><img src="https://1669663611-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FRdTysrljwe610dPFG7tE%2Fuploads%2Fq3nWpbCd3D7E10L30Qif%2Fimage.png?alt=media&#x26;token=90666ccb-c13a-4073-93db-e870bbd7167b" alt="" width="563"><figcaption></figcaption></figure>

## Licensing

Click the button **Import License**<br>

<figure><img src="https://1669663611-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FRdTysrljwe610dPFG7tE%2Fuploads%2F8OzA0UL8j1kgTwO2VrYu%2FScreenshot_15.png?alt=media&#x26;token=c0c0c0dc-d1ab-4ffe-8f69-8d11bd1f2a4b" alt="" width="563"><figcaption></figcaption></figure>

Import the file license that you download from the [Hideez Portal](https://portal.hideez.com/).  Or you can [ask us](mailto:support@hideez.com), and we will generate a license for you.

<figure><img src="https://content.gitbook.com/content/RdTysrljwe610dPFG7tE/blobs/6CSg3VddzssBHyMQozEw/image.png" alt="" width="467"><figcaption></figcaption></figure>

{% hint style="info" %}
Import the file license that you download from the [Hideez Portal](https://portal.hideez.com/). Or you can [ask us](mailto:support@hideez.com), and we will generate a license for you.
{% endhint %}

## Active Directory (On-premises)

{% hint style="info" %}
To enable integration between Hideez Server and on-premises Active Directory via Microsoft Entra ID, including user synchronization and password management, refer to the following guide:

* [**Connect Hideez Server to Microsoft Entra ID — Active Directory (On-Premises)**](https://enterprise.hideez.com/hideez-server-integration/active-directory-on-premises)

The following parameters must be configured if Hideez Server will be used in Active Directory integration scenarios:

* [Import and synchronize users from on-premises Active Directory](https://enterprise.hideez.com/hideez-server-integration/microsoft-entra-id/import)
* [Import and synchronize users from on-premises Active Directory with domain password rotation](https://enterprise.hideez.com/hideez-enterprise-server/administration/broken-reference)
  {% endhint %}

{% embed url="<https://youtu.be/NE32IXCqp20>" %}

### **Microsoft Entra ID**

{% hint style="info" %}
For details on integrating Hideez Server with Microsoft Entra ID, including user synchronization and password management setup, please refer to the instruction:

* [**Connect Hideez Server to Microsoft Entra ID**](https://enterprise.hideez.com/hideez-server-integration/microsoft-entra-id)
  {% endhint %}

{% embed url="<https://youtu.be/NdQWp-nDCRI>" %}

#### Other Domain settings&#x20;

<figure><img src="https://content.gitbook.com/content/RdTysrljwe610dPFG7tE/blobs/XPJSW1X32BudCNWfPQOX/Screenshot_8.jpg" alt=""><figcaption></figcaption></figure>

* **Domain Settings –** These credentials will be used to connect to Active Directory via LDAPS
* **Users default single sign-on settings -** This setting will be used for all users synchronized from Active Directory. Later you can change this [Single Sign-On setting for each user individually in user settings. ](https://enterprise.hideez.com/single-sign-on-settings/nastroika-polzovatelei#if-you-have-already-created-employee-select-an-employee-and-click-the-edit-button.-then-click-the-en)

<figure><img src="https://content.gitbook.com/content/RdTysrljwe610dPFG7tE/blobs/HrWkTgPI8evHI4drHYj2/Screenshot_9.jpg" alt="" width="563"><figcaption></figcaption></figure>

* **Workstation passwordless logon settings -** Update Workstation Passwordless Logon Settings.

## Splunk

{% hint style="info" %}
**Splunk** is a platform for collecting, analyzing, and visualizing machine data in real-time. It helps organizations monitor systems, detect threats, and troubleshoot issues by processing logs and other data sources.
{% endhint %}

![](https://content.gitbook.com/content/RdTysrljwe610dPFG7tE/blobs/vP7qTVaIbiZvPFYkt0Sj/image.png)

### **FIDO2**

![](https://content.gitbook.com/content/RdTysrljwe610dPFG7tE/blobs/iY5dK4PyCAYzee7ZaQpY/image.png)

If the "Allow Platform Authenticators" feature is enabled, you can choose the type of security key you are [enrolling for the user](https://enterprise.hideez.com/hideez-enterprise-server/administration/authorization-on-the-hes-server-via-a-fido-key) (by default it is cross-platform):

<figure><img src="https://content.gitbook.com/content/RdTysrljwe610dPFG7tE/blobs/V4X9gByBVO6H1b1B8L1g/image.png" alt=""><figcaption></figcaption></figure>

So the list of the user's FIDO keys will look like this:

![](https://content.gitbook.com/content/RdTysrljwe610dPFG7tE/blobs/HclxHjj24Ilqd5ItNgDW/image.png)

### SAML

More about **SAML configuration** you can read [here](https://enterprise.hideez.com/hideez-enterprise-server/configuring-saml-protocol).

### OIDC

The **Openid connect clients (OIDC)** parameters can be set at the OIDC section.&#x20;

* [Please see the Configuration for OIDC (OpenID Connect)](https://enterprise.hideez.com/hideez-enterprise-server/configuration-oidc-openid-connect)

![](https://content.gitbook.com/content/RdTysrljwe610dPFG7tE/blobs/dceOYTz3YOm51K3bCWvK/image.png)

### Appearance

In this section, you can customize logos and email for the server.

<figure><img src="https://content.gitbook.com/content/RdTysrljwe610dPFG7tE/blobs/YmzqImvFhJFYtZvi3lZO/image.png" alt=""><figcaption></figcaption></figure>