Defend Your Castle! Federated Identity for Better Security

castle like protection of federated ID

Your organization is like a castle – you want to put up barriers to malicious intruders, while only allowing trusted and verified personnel to enter. And some of your organization’s most sensitive information is stored in your castle’s stronghold – your DMS. 

Federated Identity is like one of many possible concentric rings around your castle. It is the linking of one user/identity in one system (your DMS) to another user/identity in another system (an identity provider).

Using federated identity login with NetDocuments requires an identity provider (IDP), such as Active Directory Federated Service (AD FS), Windows Azure Active Directory (WAAD), OneLogin, or Okta. The ability to integrate with one of these IDPs is included in your NetDocuments subscription. 

NetDocuments federated identity is proven, safe, and ready to meet the security needs of today’s law firms.

Using federated identity’s single sign-on features, logging in to NetDocuments is virtually invisible to users. This reduces the burden of password management that is placed on the user.

Federated identity gives your organization more control over the login process, streamlining the management of users and authentication options by the following:*

  • An IDP acts as the ‘front door’ - Users must go through the IDP to access NetDocuments
  • User account updates – when an employee changes their name in the IDP, their name is automatically updated in NetDocuments.
  • Group management - Many identity providers allow you to manage group membership in NetDocuments, which is ideal for small to mid-size firms that don’t need or want sophisticated ethical wall software.
  • Just-in-time user provisioning – when a new employee goes to sign in, a NetDocuments account is automatically created for them on the fly, based on their email domain.
  • Device-level security – control which devices your users are able to log on to.
  • Password requirements – length and complexity, expiration, resets.
  • Multi-factor authentication – text message, email, etc.
  • IP-based authentication – restrict logins based on IP address.
  • Session time – control how long users’ login session will last.

*(availability of features may depend on the IDP)

If you have any questions about federated identity or how to deploy an IDP with your NetDocuments, just contact info@affinityconsulting.com and we'll be happy to help defend your castle!


Russell Duncan

Written by Russell Duncan

Russell Duncan is one of Affinity’s Document Management Magicians! Russell came to Affinity after spending several years with Partner NetDocuments wearing many hats over his years there. Affinity clients gain from Russell’s immense experience working with document management solutions and problem-solving skills. He loves to help people get the most out of their technology and to learn new things. When analyzing complex systems, Russell is gifted in his ability to simplify them for others’ ease of use and understanding.

Recent Posts