H
H
Hideez Authentication Service (EN)
Search…
H
H
Hideez Authentication Service (EN)
v3.11
Hideez Authentication Service for Enterprises
Quick Start Guides
Key features of the Hideez Authentication Service in 5 minutes
Admin Guide (first steps)
Admin Guide (advanced steps)
User Guide – first steps with the Hideez Client
User Guide – first steps with the Hideez Client (for PCs without internal Bluetooth)
User Guide (advanced steps with the Hideez Client)
FIDO2 and U2F Authentication Guide
Guide for Pilot projects
Use cases
End user Use cases
Admin cases
Hideez Enterprise Server
Glossary
Deployment
Administration
How to change the password for an administrator account?
How to recover a forgotten admin password?
Adding an admin account
Deleting an admin account
How to enable two-factor authentication at the Hideez Enterprise Server?
Authorization on the HES server via a FIDO key
Platform authentication on the HES server
Connecting Linux server to Active Directory
Setting HES server parameters
Configuring DNS server
How to create and set Device Access Profiles
How to manage companies and departments?
How to manage Positions?
Enable load balancing
Data Protection
Dashboard
Employees
Workstations
Hardware Vaults
Accounts
Keys Management
Audit
Licenses
Configuring SAML Protocol
Hideez Client App
Windows Client deployment
Application interface
Account management
Shortcuts
Remote Vault connection
Experimental settings section
Mobile Authenticator
Troubleshooting
Hideez Key (Enterprise Edition)
Technical Specifications
Principles of operation
Device Layout
Battery maintenance
Hideez Key modes
How to update the Hideez Key (Enterprise) firmware
How to enter credentials with the Hideez Key
How to unlock PC
Key for Physical doors
Product Updates
Hideez Authentication Service Update
Hideez Key firmware updates
Hideez Client updates
API
Hideez Enterprise Server web API
FAQ
Hideez Enterprise Server
Hideez Key
Documentation portal
Powered By GitBook
Setting HES server parameters
Hideez Enterprise Server – Setting HES Server parameters
To work correctly, you need to specify some basic settings.
Go to Settings -> Parameters.

Licensing

Click the button Set License Settings.
Fill in and save the API Key, you have to get it at the stage of setting up the server. Ask us if you have ordered a pilot and don't know your API key.
After saving, the API Key is not displayed in the settings in open form. To view it, click the Show button.
Also here you can import your licenses from HLS by clicking on Import licenses button.
You can import licenses via API key or using a file. Please, ask us if you need to get your licenses file.

Domain

These parameters must be specified if you will use HES scenarios for working with AD. Import and sync users from Active Directory Import and sync users from Active Directory with domain password changing
Click the button Set Domain Settings.
Fill in and save the following parameters (domain on premises):
  • Domain Name: enter your Active Directory domain. This is necessary to import users from previously created groups in AD.
  • User Logon Name: AD administrator's login with permissions to get users and groups from the AD and change user's passwords.
  • Password: AD administrator's password with permissions to get users and groups from the AD and change user's passwords.
  • Auto Password Change (days): number of days after which it is necessary to change the password from the domain account to users from the Security Key Auto Password Change group.
Fill in and save the following parameters (Azure AD):
  • Application ID: enter your Azure AD application id.
  • Client secret: enter your Azure AD client secret.
  • Tenant ID: enter your Azure AD tenant id.
  • Auto Password Change (days): number of days after which it is necessary to change the password from the domain account to users from the Security Key Auto Password Change group.
After saving the data, login parameters are not displayed in the settings.
If you use Linux and need the AD integration, join your Linux server to the AD
Be aware! As soon as you remove the AD administrator login and password from the settings, all AD sync scenarios will stop working.
With this instruction you can add on server several domains at the same time. Each domain is managed separately.

Splunk

Also you can set here Splunk settings.

FIDO2

If the "Allow Platform Authenticators" feature is enabled, you can choose the type of the security key you are enrolling for the user (by default it is cross-platform):
So the list of the user's FIDO keys will look like this:

SAML

More about SAML configuration you can read here.

OIDC

The Openid connect clients (OIDC) parameters can be set at the OIDC section.
Previous
Connecting Linux server to Active Directory
Next
Configuring DNS server
Last modified 14d ago
Copy link
Contents
Licensing
Domain
Splunk
FIDO2
SAML
OIDC